9f5a775f3d3839a65144d1dce364e69d7aca646bc2fa884b4f9775aaafd493da | Triage

Sharing

Copy URL Twitter E-mail

General

Target

46d33b0983a4c6986c15fc31d8bcb76c_JaffaCakes118
Size

30KB
Sample

240714-v5gm3azgrq
MD5

46d33b0983a4c6986c15fc31d8bcb76c
SHA1

f12272e42eec991181655c627e1c377e786ae710
SHA256

9f5a775f3d3839a65144d1dce364e69d7aca646bc2fa884b4f9775aaafd493da
SHA512

518b42974f97f889bad63b5eead10166ead0657cffd9544bcb3dfceabb5b6902ce072708d3fd03ae5eee20b0c4ba707a1e2d4d524facc8c64ba5a9c2ff622d21
SSDEEP

384:gRqKeru/OJJloNirRI2ENnaKru/OLyVaErkWo96pwa:gRPJGJJloc8a9ycVAWo96pw

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  46d33b0983a4c6986c15fc31d8bcb76c_JaffaCakes118
- Size
  
  30KB
- MD5
  
  46d33b0983a4c6986c15fc31d8bcb76c
- SHA1
  
  f12272e42eec991181655c627e1c377e786ae710
- SHA256
  
  9f5a775f3d3839a65144d1dce364e69d7aca646bc2fa884b4f9775aaafd493da
- SHA512
  
  518b42974f97f889bad63b5eead10166ead0657cffd9544bcb3dfceabb5b6902ce072708d3fd03ae5eee20b0c4ba707a1e2d4d524facc8c64ba5a9c2ff622d21
- SSDEEP
  
  384:gRqKeru/OJJloNirRI2ENnaKru/OLyVaErkWo96pwa:gRPJGJJloc8a9ycVAWo96pw
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2