f4668d2aaff6b2225580ce1a09e38414850c4ecfe305fa5b3e2e75eaa780440a | Triage

Sharing

General

Target

65c08dc64d5e4840f7db4177f124d1a6_JaffaCakes118
Size

298KB
Sample

240723-cnzs7ssdmm
MD5

65c08dc64d5e4840f7db4177f124d1a6
SHA1

80ea227f8ca837a6a4a7e0db92dc9ab8d63dc731
SHA256

f4668d2aaff6b2225580ce1a09e38414850c4ecfe305fa5b3e2e75eaa780440a
SHA512

5bac416a34e4721faf65d41edeac0332d1474c2b9217e4318fe9f5340526ed3cbe0e6ec6459fe7620286db04206b5c9247aa4535210da0060af288b99ed956ab
SSDEEP

6144://0uoOiEdcv2vswOb815E8PcEYLrS/NsXIFVA3hkuFIs:/J2Gg2kRmq8PKS/2XIFV6fn

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  65c08dc64d5e4840f7db4177f124d1a6_JaffaCakes118
- Size
  
  298KB
- MD5
  
  65c08dc64d5e4840f7db4177f124d1a6
- SHA1
  
  80ea227f8ca837a6a4a7e0db92dc9ab8d63dc731
- SHA256
  
  f4668d2aaff6b2225580ce1a09e38414850c4ecfe305fa5b3e2e75eaa780440a
- SHA512
  
  5bac416a34e4721faf65d41edeac0332d1474c2b9217e4318fe9f5340526ed3cbe0e6ec6459fe7620286db04206b5c9247aa4535210da0060af288b99ed956ab
- SSDEEP
  
  6144://0uoOiEdcv2vswOb815E8PcEYLrS/NsXIFVA3hkuFIs:/J2Gg2kRmq8PKS/2XIFV6fn
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2