ae96ab165c21cfa22b2863265aae01a03eb2511b00cd80435c32417de283accc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

471e9e81c244b4e8dcf3c36803b1543a_JaffaCakes118
Size

112KB
Sample

240714-2swpsaycna
MD5

471e9e81c244b4e8dcf3c36803b1543a
SHA1

25e197f5444e03ff631186b00d69c2ca25d604a4
SHA256

ae96ab165c21cfa22b2863265aae01a03eb2511b00cd80435c32417de283accc
SHA512

727da3239221cc1c44593537b21807b3433b9c6d9c2a17825db20024ae8fe1736ec54373869a1fcb794ce9f44f400961e0c77f2cf782723a365eb38f2426b473
SSDEEP

3072:33SHhw5mjr/aEDS1kYDduFifqhn+25Uf6ggrh:HSHO5mjrjASifMn+Tf6ph

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  471e9e81c244b4e8dcf3c36803b1543a_JaffaCakes118
- Size
  
  112KB
- MD5
  
  471e9e81c244b4e8dcf3c36803b1543a
- SHA1
  
  25e197f5444e03ff631186b00d69c2ca25d604a4
- SHA256
  
  ae96ab165c21cfa22b2863265aae01a03eb2511b00cd80435c32417de283accc
- SHA512
  
  727da3239221cc1c44593537b21807b3433b9c6d9c2a17825db20024ae8fe1736ec54373869a1fcb794ce9f44f400961e0c77f2cf782723a365eb38f2426b473
- SSDEEP
  
  3072:33SHhw5mjr/aEDS1kYDduFifqhn+25Uf6ggrh:HSHO5mjrjASifMn+Tf6ph
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2