2908c9babcc4031257e4d6a4662b41ea892358834bc2e748fbbb4e4cc6e650eb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

46636f0a19da3c85db3e08cf6633ae34_JaffaCakes118
Size

88KB
Sample

240714-sqeh2sybja
MD5

46636f0a19da3c85db3e08cf6633ae34
SHA1

02d5606837b4e578367322a87d1c6c86605b0ef4
SHA256

2908c9babcc4031257e4d6a4662b41ea892358834bc2e748fbbb4e4cc6e650eb
SHA512

cec82d805eef310098e88211f34631a5f2af92165bf015dce2f28c6721f1db3a22db25af5b3ed7162d9c2dd26a9852358793df0f4789b2f16ff3529c854fbada
SSDEEP

1536:IFDGY3DJOdKzGgBA2jRIFMCPdhjtr/FBK6+U0nbVyV+ufe2gj5Xh:IZnz1z1BlTQdZpadU0i+uA3

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  46636f0a19da3c85db3e08cf6633ae34_JaffaCakes118
- Size
  
  88KB
- MD5
  
  46636f0a19da3c85db3e08cf6633ae34
- SHA1
  
  02d5606837b4e578367322a87d1c6c86605b0ef4
- SHA256
  
  2908c9babcc4031257e4d6a4662b41ea892358834bc2e748fbbb4e4cc6e650eb
- SHA512
  
  cec82d805eef310098e88211f34631a5f2af92165bf015dce2f28c6721f1db3a22db25af5b3ed7162d9c2dd26a9852358793df0f4789b2f16ff3529c854fbada
- SSDEEP
  
  1536:IFDGY3DJOdKzGgBA2jRIFMCPdhjtr/FBK6+U0nbVyV+ufe2gj5Xh:IZnz1z1BlTQdZpadU0i+uA3
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2