2be2aa3b86915e92ec166ad350484a069be794ec6d9f16181c684288f8d11fb8 | Triage

Sharing

General

Target

3a6adb42e2baa2d3ef500fa528b59d8e_JaffaCakes118
Size

111KB
Sample

240711-xzzmsszgln
MD5

3a6adb42e2baa2d3ef500fa528b59d8e
SHA1

00465c28a089324bc8d4cf81971fc7804a3d59e8
SHA256

2be2aa3b86915e92ec166ad350484a069be794ec6d9f16181c684288f8d11fb8
SHA512

ccef713ff86d09c04fa0cee4bc6fcb1ea892ce9bc7affbef307cf6d9a4551a3c7eb5ca9213e1a8eaab0c49c3b890cf1c8cf3a865e824e298a6e0163ec5f5cd6c
SSDEEP

3072:x3+5qvdCvJ7U6gd86uEpGbHa75X3abQTcGe97u3bZ:xDdCf8fia75XqbQTch9yb

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  3a6adb42e2baa2d3ef500fa528b59d8e_JaffaCakes118
- Size
  
  111KB
- MD5
  
  3a6adb42e2baa2d3ef500fa528b59d8e
- SHA1
  
  00465c28a089324bc8d4cf81971fc7804a3d59e8
- SHA256
  
  2be2aa3b86915e92ec166ad350484a069be794ec6d9f16181c684288f8d11fb8
- SHA512
  
  ccef713ff86d09c04fa0cee4bc6fcb1ea892ce9bc7affbef307cf6d9a4551a3c7eb5ca9213e1a8eaab0c49c3b890cf1c8cf3a865e824e298a6e0163ec5f5cd6c
- SSDEEP
  
  3072:x3+5qvdCvJ7U6gd86uEpGbHa75X3abQTcGe97u3bZ:xDdCf8fia75XqbQTch9yb
Score

7^/10

persistence
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2