310b1260bfe180147e5283a21f96381c3e4eb204b122dcfd6f370d00185fbad9 | Triage

Sharing

General

Target

44c2a2c2bbd741b08bfcc10b2630923c_JaffaCakes118
Size

27KB
Sample

240714-hm5wqashja
MD5

44c2a2c2bbd741b08bfcc10b2630923c
SHA1

7e58c1444ec1ff27b30dd14ca6b7315442261fe7
SHA256

310b1260bfe180147e5283a21f96381c3e4eb204b122dcfd6f370d00185fbad9
SHA512

e1a595480f0c8cfcc42144ec89ab1c0537095c98fca803a1845a7f7b61ee97fda48270f14874a0765e778c0c40d665ea2ac0402e6c4987e21c59e06cca741317
SSDEEP

384:H9GryHnJktcBpIwKVuo0C7YfPNarnYCUdPh0pbiWI2Cv:H9EWJ+cH8j4NarnIdPh0pGWm

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  44c2a2c2bbd741b08bfcc10b2630923c_JaffaCakes118
- Size
  
  27KB
- MD5
  
  44c2a2c2bbd741b08bfcc10b2630923c
- SHA1
  
  7e58c1444ec1ff27b30dd14ca6b7315442261fe7
- SHA256
  
  310b1260bfe180147e5283a21f96381c3e4eb204b122dcfd6f370d00185fbad9
- SHA512
  
  e1a595480f0c8cfcc42144ec89ab1c0537095c98fca803a1845a7f7b61ee97fda48270f14874a0765e778c0c40d665ea2ac0402e6c4987e21c59e06cca741317
- SSDEEP
  
  384:H9GryHnJktcBpIwKVuo0C7YfPNarnYCUdPh0pbiWI2Cv:H9EWJ+cH8j4NarnIdPh0pGWm
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2