38b4e6442874d7d7eaf0533199e222eaf9db5bc2e340df7d30d81d5c086a8f29 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

622c83f0960b8f1911321196f7967ff7_JaffaCakes118
Size

33KB
Sample

240722-bgm1dswfnp
MD5

622c83f0960b8f1911321196f7967ff7
SHA1

678ed43d70077cb0cf29977c7780a0ed0ec8de19
SHA256

38b4e6442874d7d7eaf0533199e222eaf9db5bc2e340df7d30d81d5c086a8f29
SHA512

6f5ee2eb2f538a1ef2f3a772eb29e061a500aa23733d2b6f28206522c2d000cae2d134199a15e25201b744a1a4e52f3bf4d3f624c5541882d0b25429afc813b4
SSDEEP

768:re4TH/zy0W5defiInLF5a/nAC+JLyrUUk/d:64fzyD5aiIZ5a/ACCCFC

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  622c83f0960b8f1911321196f7967ff7_JaffaCakes118
- Size
  
  33KB
- MD5
  
  622c83f0960b8f1911321196f7967ff7
- SHA1
  
  678ed43d70077cb0cf29977c7780a0ed0ec8de19
- SHA256
  
  38b4e6442874d7d7eaf0533199e222eaf9db5bc2e340df7d30d81d5c086a8f29
- SHA512
  
  6f5ee2eb2f538a1ef2f3a772eb29e061a500aa23733d2b6f28206522c2d000cae2d134199a15e25201b744a1a4e52f3bf4d3f624c5541882d0b25429afc813b4
- SSDEEP
  
  768:re4TH/zy0W5defiInLF5a/nAC+JLyrUUk/d:64fzyD5aiIZ5a/ACCCFC
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2