7b844252cda7d56d4f23f2e33d31907abf3f1605506153b0d40176553f6ed1de | Triage

Sharing

General

Target

65b88489f79f8f3960141d3df37fbd4f_JaffaCakes118
Size

340KB
Sample

240723-cgtnlssamm
MD5

65b88489f79f8f3960141d3df37fbd4f
SHA1

9f19352f8c9d1993e19c3a473eb35b4fa5804657
SHA256

7b844252cda7d56d4f23f2e33d31907abf3f1605506153b0d40176553f6ed1de
SHA512

6e1f1a2abbfe84712bc952b37b806db334809c1a1b17f47bb2681e3e58402cc79f8889a8ce376ebda6247eb077aa2ecc091b56ea608e367d1919d93624ed909a
SSDEEP

6144:8h3VcYa95lebnspAs6xUtnlx4atDaOq5TOtsp0yN90PEk:0Rk5wIp4zatDaOGSXy90b

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  65b88489f79f8f3960141d3df37fbd4f_JaffaCakes118
- Size
  
  340KB
- MD5
  
  65b88489f79f8f3960141d3df37fbd4f
- SHA1
  
  9f19352f8c9d1993e19c3a473eb35b4fa5804657
- SHA256
  
  7b844252cda7d56d4f23f2e33d31907abf3f1605506153b0d40176553f6ed1de
- SHA512
  
  6e1f1a2abbfe84712bc952b37b806db334809c1a1b17f47bb2681e3e58402cc79f8889a8ce376ebda6247eb077aa2ecc091b56ea608e367d1919d93624ed909a
- SSDEEP
  
  6144:8h3VcYa95lebnspAs6xUtnlx4atDaOq5TOtsp0yN90PEk:0Rk5wIp4zatDaOGSXy90b
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2