011f9c117fca91df9c6639c8d327e8b6520a790497201e54277744535014316a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

63ea7d6972790c878b6400794eba3dea_JaffaCakes118
Size

269KB
Sample

240722-txf6wsxbrq
MD5

63ea7d6972790c878b6400794eba3dea
SHA1

e437cccdc063e0608cba3f9dc9a3ce024ac6fb00
SHA256

011f9c117fca91df9c6639c8d327e8b6520a790497201e54277744535014316a
SHA512

04d33bfcd84f7eb12e4ca1c239f8b1a9ad759d7bb54472c5579d23eb5468a5febb125ac3e74d213a20947527841153879a049feaabe22e4e00d7bbfed66c45ed
SSDEEP

3072:mxP0uR1yinuBUurRPrwTzGav34Xu6qIxyyY7ubMT5fGbBVS3OmaDETNlw:mPhzkBUutPrUzGavQhqIYtOM5gVKfC

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  63ea7d6972790c878b6400794eba3dea_JaffaCakes118
- Size
  
  269KB
- MD5
  
  63ea7d6972790c878b6400794eba3dea
- SHA1
  
  e437cccdc063e0608cba3f9dc9a3ce024ac6fb00
- SHA256
  
  011f9c117fca91df9c6639c8d327e8b6520a790497201e54277744535014316a
- SHA512
  
  04d33bfcd84f7eb12e4ca1c239f8b1a9ad759d7bb54472c5579d23eb5468a5febb125ac3e74d213a20947527841153879a049feaabe22e4e00d7bbfed66c45ed
- SSDEEP
  
  3072:mxP0uR1yinuBUurRPrwTzGav34Xu6qIxyyY7ubMT5fGbBVS3OmaDETNlw:mPhzkBUutPrUzGavQhqIYtOM5gVKfC
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2