4995bfec6cda724763c03723f1c34e40dadda771c68c26cbfee72d51fce5c47c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5ebc9e2b51e25af4083e5effbcec4734_JaffaCakes118
Size

96KB
Sample

240720-c9fx8awflf
MD5

5ebc9e2b51e25af4083e5effbcec4734
SHA1

574d68551af7daf2a72006d1f8232eb422f93de2
SHA256

4995bfec6cda724763c03723f1c34e40dadda771c68c26cbfee72d51fce5c47c
SHA512

21ece59d03b1755238cee992978d0c58da9829a288f63d4132cc5232466f7db1a0cffa895d383a42c1f93a8074f75ef4eec9d55222ebc846513add80ad4ff0c9
SSDEEP

768:WDK+1hWvATDmhCXXI6cDkxgRLDcC8Onk1rGpgCanetJXb:OWvaVXovcU2U3

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  5ebc9e2b51e25af4083e5effbcec4734_JaffaCakes118
- Size
  
  96KB
- MD5
  
  5ebc9e2b51e25af4083e5effbcec4734
- SHA1
  
  574d68551af7daf2a72006d1f8232eb422f93de2
- SHA256
  
  4995bfec6cda724763c03723f1c34e40dadda771c68c26cbfee72d51fce5c47c
- SHA512
  
  21ece59d03b1755238cee992978d0c58da9829a288f63d4132cc5232466f7db1a0cffa895d383a42c1f93a8074f75ef4eec9d55222ebc846513add80ad4ff0c9
- SSDEEP
  
  768:WDK+1hWvATDmhCXXI6cDkxgRLDcC8Onk1rGpgCanetJXb:OWvaVXovcU2U3
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2