6337ea74ebdf18f3db82dbe15b58de9d13a0328fecf4763e53a97163e48498be | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4350d00a184526cac61533100d94440d_JaffaCakes118
Size

84KB
Sample

240713-zsjn4sxapp
MD5

4350d00a184526cac61533100d94440d
SHA1

f8bb65340af6a802042f06866e1b1a2edcada3a0
SHA256

6337ea74ebdf18f3db82dbe15b58de9d13a0328fecf4763e53a97163e48498be
SHA512

51ed5faf5a4164d30818895423fda6328f39bfc29ac46e1b2d27e82793b8e50d934e7bfe68ca0eb41ada1290f2a88b718e9c62dbac6bc590fb7fd648dbaa682d
SSDEEP

1536:eoWyWXwFTEQPHKS7kgw+/rqjDJNEoXJWIDmPgkbGgoRDqQd86Yt:eJXwFJHbGJpXNigkAxYt

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  4350d00a184526cac61533100d94440d_JaffaCakes118
- Size
  
  84KB
- MD5
  
  4350d00a184526cac61533100d94440d
- SHA1
  
  f8bb65340af6a802042f06866e1b1a2edcada3a0
- SHA256
  
  6337ea74ebdf18f3db82dbe15b58de9d13a0328fecf4763e53a97163e48498be
- SHA512
  
  51ed5faf5a4164d30818895423fda6328f39bfc29ac46e1b2d27e82793b8e50d934e7bfe68ca0eb41ada1290f2a88b718e9c62dbac6bc590fb7fd648dbaa682d
- SSDEEP
  
  1536:eoWyWXwFTEQPHKS7kgw+/rqjDJNEoXJWIDmPgkbGgoRDqQd86Yt:eJXwFJHbGJpXNigkAxYt
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2