390b1a58816baeddb270bb8f58e42136f1f4cb0636be5fd5c427e30eac59f9eb | Triage

Sharing

General

Target

64556fba96511df8b7449e7247008886_JaffaCakes118
Size

34KB
Sample

240722-xaj6ta1flb
MD5

64556fba96511df8b7449e7247008886
SHA1

fc9c01795b3badc3d9402034609417a4f59c0e9a
SHA256

390b1a58816baeddb270bb8f58e42136f1f4cb0636be5fd5c427e30eac59f9eb
SHA512

d4d2338cda5851ee81547f7fda1e8f32b2e42bec5b7835accba42eeebe3826a1d54b9c0d1bc0492785aca8dda1da89ddb52ed14fa02e8dea8dc4eb1f5f4b5bff
SSDEEP

384:Z7MO04loobMxJNlf7HG6t1mC8bMWYtwWCnrm0A9EFqGVlz6b1iFOVCYBJPHS/7SC:n0GofNd7XHmC8lpQn+Xy1yOgaH1d0WB

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  64556fba96511df8b7449e7247008886_JaffaCakes118
- Size
  
  34KB
- MD5
  
  64556fba96511df8b7449e7247008886
- SHA1
  
  fc9c01795b3badc3d9402034609417a4f59c0e9a
- SHA256
  
  390b1a58816baeddb270bb8f58e42136f1f4cb0636be5fd5c427e30eac59f9eb
- SHA512
  
  d4d2338cda5851ee81547f7fda1e8f32b2e42bec5b7835accba42eeebe3826a1d54b9c0d1bc0492785aca8dda1da89ddb52ed14fa02e8dea8dc4eb1f5f4b5bff
- SSDEEP
  
  384:Z7MO04loobMxJNlf7HG6t1mC8bMWYtwWCnrm0A9EFqGVlz6b1iFOVCYBJPHS/7SC:n0GofNd7XHmC8lpQn+Xy1yOgaH1d0WB
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2