e6c3370a121b74be33af5c7daf69750fd1eef77f9a668fcb18639e3da808d67c | Triage

Sharing

General

Target

5b532b0a545e3cbee73ac9d12192dbd6_JaffaCakes118
Size

382KB
Sample

240719-k9vqdatcpn
MD5

5b532b0a545e3cbee73ac9d12192dbd6
SHA1

020d19ae4625d9f8536a3e9105c4790ab54dfe64
SHA256

e6c3370a121b74be33af5c7daf69750fd1eef77f9a668fcb18639e3da808d67c
SHA512

7adc7b575fc4bae37bd8d58aa8f8f765adea7dec502d4c2a93b9171b5ae6ee5b2acfee121e4c5d48148559ec23673e12c82da1a39c57cbcb24b8301f9c83d51d
SSDEEP

6144:2WaEC2hxAMAhymq6BE8PCaN633aHHc5UykfEOOy+ZXf7UTmmjf/b8NPTZ/5J83:djhKJhDBE263d1kfIZvyjr0ZD83

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  5b532b0a545e3cbee73ac9d12192dbd6_JaffaCakes118
- Size
  
  382KB
- MD5
  
  5b532b0a545e3cbee73ac9d12192dbd6
- SHA1
  
  020d19ae4625d9f8536a3e9105c4790ab54dfe64
- SHA256
  
  e6c3370a121b74be33af5c7daf69750fd1eef77f9a668fcb18639e3da808d67c
- SHA512
  
  7adc7b575fc4bae37bd8d58aa8f8f765adea7dec502d4c2a93b9171b5ae6ee5b2acfee121e4c5d48148559ec23673e12c82da1a39c57cbcb24b8301f9c83d51d
- SSDEEP
  
  6144:2WaEC2hxAMAhymq6BE8PCaN633aHHc5UykfEOOy+ZXf7UTmmjf/b8NPTZ/5J83:djhKJhDBE263d1kfIZvyjr0ZD83
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2