9108997ed7a98a7abe8ff92f631c4a0d48ecebdaee9511707da9127a9ec55dcc | Triage

Sharing

General

Target

44b317f22e4f8b434457bd4e716ffcdf_JaffaCakes118
Size

354KB
Sample

240714-hagy5azdkr
MD5

44b317f22e4f8b434457bd4e716ffcdf
SHA1

69178bd12b0cf4224fea5ddc0b4d4da450a9bab3
SHA256

9108997ed7a98a7abe8ff92f631c4a0d48ecebdaee9511707da9127a9ec55dcc
SHA512

7e9a0cedbdaadd36a8d40d7cc41e3a495d830db080229c9a3b155d4a9508edd5a0272819f96bb53b105f47562e5f065ff7a30edcc6afd02863ad055ac3320d7b
SSDEEP

6144:WiOgCOUoL9sewNglEO/JUYfxVc5Iv01RtazG3TpqRIjVCZFmrMD2u5LYeaszuQ:Tpso/+8Pc5IsWhKjAtD/5LraO

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  44b317f22e4f8b434457bd4e716ffcdf_JaffaCakes118
- Size
  
  354KB
- MD5
  
  44b317f22e4f8b434457bd4e716ffcdf
- SHA1
  
  69178bd12b0cf4224fea5ddc0b4d4da450a9bab3
- SHA256
  
  9108997ed7a98a7abe8ff92f631c4a0d48ecebdaee9511707da9127a9ec55dcc
- SHA512
  
  7e9a0cedbdaadd36a8d40d7cc41e3a495d830db080229c9a3b155d4a9508edd5a0272819f96bb53b105f47562e5f065ff7a30edcc6afd02863ad055ac3320d7b
- SSDEEP
  
  6144:WiOgCOUoL9sewNglEO/JUYfxVc5Iv01RtazG3TpqRIjVCZFmrMD2u5LYeaszuQ:Tpso/+8Pc5IsWhKjAtD/5LraO
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2