e9df6af53f4b7a17f6ec359fe2c5edc26a722e291acec4219a0d52e784b4d995 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

46dd95ee70f02e5fbe8c2782b05efdbf_JaffaCakes118
Size

10KB
Sample

240714-wc5pvs1bpp
MD5

46dd95ee70f02e5fbe8c2782b05efdbf
SHA1

479dbf70524fb8180dccb99e61ced385b51cbf5d
SHA256

e9df6af53f4b7a17f6ec359fe2c5edc26a722e291acec4219a0d52e784b4d995
SHA512

0ac1a620892c0c4e2900a354be1fbdbb930ed4d99b49931fa73935860e499a2ee1fc661f47f758765f8cc2491388350777b0af022323402cdce34f79ca19e891
SSDEEP

192:1oMRHyW1Xe/lBd3GVu05jWaKdx2ptBetDGHRw++RqiIqCoB7Ddqmay:1lRHhe//0YaKMtIaOUSf0m7

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  46dd95ee70f02e5fbe8c2782b05efdbf_JaffaCakes118
- Size
  
  10KB
- MD5
  
  46dd95ee70f02e5fbe8c2782b05efdbf
- SHA1
  
  479dbf70524fb8180dccb99e61ced385b51cbf5d
- SHA256
  
  e9df6af53f4b7a17f6ec359fe2c5edc26a722e291acec4219a0d52e784b4d995
- SHA512
  
  0ac1a620892c0c4e2900a354be1fbdbb930ed4d99b49931fa73935860e499a2ee1fc661f47f758765f8cc2491388350777b0af022323402cdce34f79ca19e891
- SSDEEP
  
  192:1oMRHyW1Xe/lBd3GVu05jWaKdx2ptBetDGHRw++RqiIqCoB7Ddqmay:1lRHhe//0YaKMtIaOUSf0m7
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2