17ce09679f37eb3a30a5d3b43241caec7aff6898ce0a934bf7dc974d9b187e2d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3e68c0c6b603aa98c0c9a12839928a21_JaffaCakes118
Size

698KB
Sample

240712-w5f7zavflq
MD5

3e68c0c6b603aa98c0c9a12839928a21
SHA1

309084773f63b71e3258a1551bf17c07249c9182
SHA256

17ce09679f37eb3a30a5d3b43241caec7aff6898ce0a934bf7dc974d9b187e2d
SHA512

95af5feab552a95c7bfb52bcbda4028917842e7c31d6da9cb615fcee0ff97a5753096eeb1a4c13e68ff1d66a85fd4c329e79068737235deee9ad3d2ad5c189e2
SSDEEP

12288:sxz6cjhDBPl8/jDxMP7QFV2e+vWabM4aHYNEVe5LRLg9nues7YIEebKP:Mz6cjhDBPmD+zQ32n44uYNEo51L1es0V

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  3e68c0c6b603aa98c0c9a12839928a21_JaffaCakes118
- Size
  
  698KB
- MD5
  
  3e68c0c6b603aa98c0c9a12839928a21
- SHA1
  
  309084773f63b71e3258a1551bf17c07249c9182
- SHA256
  
  17ce09679f37eb3a30a5d3b43241caec7aff6898ce0a934bf7dc974d9b187e2d
- SHA512
  
  95af5feab552a95c7bfb52bcbda4028917842e7c31d6da9cb615fcee0ff97a5753096eeb1a4c13e68ff1d66a85fd4c329e79068737235deee9ad3d2ad5c189e2
- SSDEEP
  
  12288:sxz6cjhDBPl8/jDxMP7QFV2e+vWabM4aHYNEVe5LRLg9nues7YIEebKP:Mz6cjhDBPmD+zQ32n44uYNEo51L1es0V
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2