97162c2f0b5246cb6c3b4f48bb30b99ed29578089ee0d400f63c3f678a6d8e07 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5a58c5057cc9948838b5497a4f1c3129_JaffaCakes118
Size

656KB
Sample

240719-ecg55a1elq
MD5

5a58c5057cc9948838b5497a4f1c3129
SHA1

51cc481c1d79980f3dcd4933c75998482db0549e
SHA256

97162c2f0b5246cb6c3b4f48bb30b99ed29578089ee0d400f63c3f678a6d8e07
SHA512

487d10127356819bfab0d7ec7f1cd6d3bb786aac2a4099ccae5f7d8d086bc4c9bb9259b7fd4011e1b3795781a8b941caf7dd5f728c73b17f33ef0d2eedf70199
SSDEEP

12288:uY9Dp9btJqFwzcDCx66lEHKjvscCVDju2wg8a/TJL+ELd3lYkO/RpRm:uY9zLRzNsv+8aTg8+JLLdVa/Jm

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  5a58c5057cc9948838b5497a4f1c3129_JaffaCakes118
- Size
  
  656KB
- MD5
  
  5a58c5057cc9948838b5497a4f1c3129
- SHA1
  
  51cc481c1d79980f3dcd4933c75998482db0549e
- SHA256
  
  97162c2f0b5246cb6c3b4f48bb30b99ed29578089ee0d400f63c3f678a6d8e07
- SHA512
  
  487d10127356819bfab0d7ec7f1cd6d3bb786aac2a4099ccae5f7d8d086bc4c9bb9259b7fd4011e1b3795781a8b941caf7dd5f728c73b17f33ef0d2eedf70199
- SSDEEP
  
  12288:uY9Dp9btJqFwzcDCx66lEHKjvscCVDju2wg8a/TJL+ELd3lYkO/RpRm:uY9zLRzNsv+8aTg8+JLLdVa/Jm
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2