38854bbfb71575813ce9b6d6a8bb22fd5511057b2321e8e501ca9e4d3a75ca1b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5afd72188d9cb8c302603ddf2378966c_JaffaCakes118
Size

109KB
Sample

240719-jdbf7asfkc
MD5

5afd72188d9cb8c302603ddf2378966c
SHA1

99762de5ca558c50f9c54201c65ff74e02aa3dfa
SHA256

38854bbfb71575813ce9b6d6a8bb22fd5511057b2321e8e501ca9e4d3a75ca1b
SHA512

2e1b4556702502f41b501fe5b857dd95662d037d7e28c25f8c940eda1770c5384e4e2daa3c3fe458e952c0dbd84c9860ab03a8f19c605c0b8905f45566bfbe51
SSDEEP

3072:U5+OEbb/bhx7NMvzjQIj13ZkhVNl79w+zgnfbXw3msJW:U0OejNMJ13ZuN19Yzg3V

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  5afd72188d9cb8c302603ddf2378966c_JaffaCakes118
- Size
  
  109KB
- MD5
  
  5afd72188d9cb8c302603ddf2378966c
- SHA1
  
  99762de5ca558c50f9c54201c65ff74e02aa3dfa
- SHA256
  
  38854bbfb71575813ce9b6d6a8bb22fd5511057b2321e8e501ca9e4d3a75ca1b
- SHA512
  
  2e1b4556702502f41b501fe5b857dd95662d037d7e28c25f8c940eda1770c5384e4e2daa3c3fe458e952c0dbd84c9860ab03a8f19c605c0b8905f45566bfbe51
- SSDEEP
  
  3072:U5+OEbb/bhx7NMvzjQIj13ZkhVNl79w+zgnfbXw3msJW:U0OejNMJ13ZuN19Yzg3V
Score

7^/10

persistence
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2