f521bb03f731e42d492652ba677e5034721460448880c2a9c69b53df7c9ecbe1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

64039e659b1312ffc2154e3ee6dc9782_JaffaCakes118
Size

277KB
Sample

240722-vhk2zayarr
MD5

64039e659b1312ffc2154e3ee6dc9782
SHA1

f2271b638ba13d8fbe4723d2c169bf918e16caa4
SHA256

f521bb03f731e42d492652ba677e5034721460448880c2a9c69b53df7c9ecbe1
SHA512

4618d4fae99b16623243043dabb670e4efd77fd434310cef0a8a5ec28e9b3da13934fcd2e1494100bf1397105b5289072b6df185aa2642a0be756eb791a31e66
SSDEEP

6144:MuRhCXigO7s79BAzBLhoa9zbZd2GxFJLXOoULlwf3yDEpU:nhCXigO7HBZ86JLYwvyDEpU

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  64039e659b1312ffc2154e3ee6dc9782_JaffaCakes118
- Size
  
  277KB
- MD5
  
  64039e659b1312ffc2154e3ee6dc9782
- SHA1
  
  f2271b638ba13d8fbe4723d2c169bf918e16caa4
- SHA256
  
  f521bb03f731e42d492652ba677e5034721460448880c2a9c69b53df7c9ecbe1
- SHA512
  
  4618d4fae99b16623243043dabb670e4efd77fd434310cef0a8a5ec28e9b3da13934fcd2e1494100bf1397105b5289072b6df185aa2642a0be756eb791a31e66
- SSDEEP
  
  6144:MuRhCXigO7s79BAzBLhoa9zbZd2GxFJLXOoULlwf3yDEpU:nhCXigO7HBZ86JLYwvyDEpU
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2