51affa3069a11953c4f19b35033b0ef04c69e5ad35c9686686b8619bbcedf3a0 | Triage

Sharing

General

Target

4456e181232270adf022f682e8595ef3_JaffaCakes118
Size

80KB
Sample

240714-e9lvkszajg
MD5

4456e181232270adf022f682e8595ef3
SHA1

3c98d29daea0e74f5242270f8fca932d7e2a680a
SHA256

51affa3069a11953c4f19b35033b0ef04c69e5ad35c9686686b8619bbcedf3a0
SHA512

8d94bbdadb1ba88b0560e5503862e205563136804bc0d81b6365c657f21e40ab595f78300a61bf039df73d980e1e1ab6d8f3b50a57c11a2dcce75f7e8565b5b7
SSDEEP

1536:SpjBzj5UgGM530aD46ca4ZdA/uxkCNRF5IWFHGz6M7podr0U65q:SpRj5IMmazyg/uxksRDTFHQ67yUo

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  4456e181232270adf022f682e8595ef3_JaffaCakes118
- Size
  
  80KB
- MD5
  
  4456e181232270adf022f682e8595ef3
- SHA1
  
  3c98d29daea0e74f5242270f8fca932d7e2a680a
- SHA256
  
  51affa3069a11953c4f19b35033b0ef04c69e5ad35c9686686b8619bbcedf3a0
- SHA512
  
  8d94bbdadb1ba88b0560e5503862e205563136804bc0d81b6365c657f21e40ab595f78300a61bf039df73d980e1e1ab6d8f3b50a57c11a2dcce75f7e8565b5b7
- SSDEEP
  
  1536:SpjBzj5UgGM530aD46ca4ZdA/uxkCNRF5IWFHGz6M7podr0U65q:SpRj5IMmazyg/uxksRDTFHQ67yUo
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2