573f502bca5ff5945274764eeeb50e68245d5fc5d2bf1c487a0eb57daaa060a3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b6949c9f8b6d62974ed81b69a056274_JaffaCakes118
Size

88KB
Sample

240719-lqmfbsvaqr
MD5

5b6949c9f8b6d62974ed81b69a056274
SHA1

5a3fca476348d6dfd1ec8dee31b34ac4bf00594d
SHA256

573f502bca5ff5945274764eeeb50e68245d5fc5d2bf1c487a0eb57daaa060a3
SHA512

ea86f27e89f0319d554de62f971e4756ee66b30c66bfd8a6c38b1e0ddcca36d89f82487e994ced59c51f257f4ce43d1314b876f658b27ba1a18e19f4e736a1e3
SSDEEP

1536:bd9rdvdlqeRFqcoWHWnYCyjQ0O4n9yhZN4DrRshHAHTMYtJqFvgioNrQewpVt:jd2RcjaYZjQZ4n9yz+pshHAwYtEFvYNC

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  5b6949c9f8b6d62974ed81b69a056274_JaffaCakes118
- Size
  
  88KB
- MD5
  
  5b6949c9f8b6d62974ed81b69a056274
- SHA1
  
  5a3fca476348d6dfd1ec8dee31b34ac4bf00594d
- SHA256
  
  573f502bca5ff5945274764eeeb50e68245d5fc5d2bf1c487a0eb57daaa060a3
- SHA512
  
  ea86f27e89f0319d554de62f971e4756ee66b30c66bfd8a6c38b1e0ddcca36d89f82487e994ced59c51f257f4ce43d1314b876f658b27ba1a18e19f4e736a1e3
- SSDEEP
  
  1536:bd9rdvdlqeRFqcoWHWnYCyjQ0O4n9yhZN4DrRshHAHTMYtJqFvgioNrQewpVt:jd2RcjaYZjQZ4n9yz+pshHAwYtEFvYNC
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2