a40c5752a09edf8059ae821ccee338be3c9fbf81761e8af7b6f43d35c5bb0f87 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

466c47df7267bd9e522bb27b1e165f8f_JaffaCakes118
Size

24KB
Sample

240714-sw8dbawemq
MD5

466c47df7267bd9e522bb27b1e165f8f
SHA1

e059b696d3d8ba64dd90a05766a17cc7f792444c
SHA256

a40c5752a09edf8059ae821ccee338be3c9fbf81761e8af7b6f43d35c5bb0f87
SHA512

59fb0f679d114ab3ea06ba4d792238f77e743aa6b8571a6cf5b28a1f3634e807caa7bd14272a2dc6f3264273cc513ed0846a55809887006b8b22f976da86ae2f
SSDEEP

384:W8noy68tssMAs9ydY1YOWzwb881Taxc1tEtp6zMDKEv1U++2MmK3oeu0Kdn:W8nYdASydCYOWv81Taco8JkK470Kd

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  466c47df7267bd9e522bb27b1e165f8f_JaffaCakes118
- Size
  
  24KB
- MD5
  
  466c47df7267bd9e522bb27b1e165f8f
- SHA1
  
  e059b696d3d8ba64dd90a05766a17cc7f792444c
- SHA256
  
  a40c5752a09edf8059ae821ccee338be3c9fbf81761e8af7b6f43d35c5bb0f87
- SHA512
  
  59fb0f679d114ab3ea06ba4d792238f77e743aa6b8571a6cf5b28a1f3634e807caa7bd14272a2dc6f3264273cc513ed0846a55809887006b8b22f976da86ae2f
- SSDEEP
  
  384:W8noy68tssMAs9ydY1YOWzwb881Taxc1tEtp6zMDKEv1U++2MmK3oeu0Kdn:W8nYdASydCYOWv81Taco8JkK470Kd
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2