dc91f53cb5388e0bfcfb9246d0485fcba4528344d34099f8f9a6ecfed213997e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b5b4cd54364dcec69c45ef29b6c79d0_JaffaCakes118
Size

236KB
Sample

240719-lfc4xaxdpg
MD5

5b5b4cd54364dcec69c45ef29b6c79d0
SHA1

35a256b430bf1edd441cd8c63fef6b9a019d36dd
SHA256

dc91f53cb5388e0bfcfb9246d0485fcba4528344d34099f8f9a6ecfed213997e
SHA512

dd1f632c88352b5067938a49fd05f920236036d4be95ee7ffe963599a0c77ce13e53c60ae00ad4f964a0bd78f6470a770c99f1acb8ff16302c9202d44fbd75c0
SSDEEP

1536:Iguo2K86vta10RJQYPIHL+D5IWhxRh/Ci4ucg3/+k5ltr+DRPG8Gz7wk+cQvM2:Go256vS0RJAL+lHPKi40+66iwkD0d

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5b5b4cd54364dcec69c45ef29b6c79d0_JaffaCakes118
- Size
  
  236KB
- MD5
  
  5b5b4cd54364dcec69c45ef29b6c79d0
- SHA1
  
  35a256b430bf1edd441cd8c63fef6b9a019d36dd
- SHA256
  
  dc91f53cb5388e0bfcfb9246d0485fcba4528344d34099f8f9a6ecfed213997e
- SHA512
  
  dd1f632c88352b5067938a49fd05f920236036d4be95ee7ffe963599a0c77ce13e53c60ae00ad4f964a0bd78f6470a770c99f1acb8ff16302c9202d44fbd75c0
- SSDEEP
  
  1536:Iguo2K86vta10RJQYPIHL+D5IWhxRh/Ci4ucg3/+k5ltr+DRPG8Gz7wk+cQvM2:Go256vS0RJAL+lHPKi40+66iwkD0d
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2