4d2c1a8b392f7e955854c467030089da5127d04ecb759fadc22f025af0442627 | Triage

Sharing

General

Target

65e86eb593cd24f71e33a625edd43537_JaffaCakes118
Size

156KB
Sample

240723-dpcwhathrf
MD5

65e86eb593cd24f71e33a625edd43537
SHA1

03374072405bedc4e8d92523b5b24dc341dd9ff3
SHA256

4d2c1a8b392f7e955854c467030089da5127d04ecb759fadc22f025af0442627
SHA512

9ba1b9cf364d3834f5e31a470df91920c87fc43e83f59b552378aa2a7d0541c54a6004c6b64a823f484a1f61b763b32b85e34a9ffbe446d71f147a1d1a26d95e
SSDEEP

3072:JGu9BlfzWIbXWm+w0Js5iWR4GTShhUYld/TAxu8FlCYQL0uz05SEX:J/0uog4GTMon+Y40uQV

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  65e86eb593cd24f71e33a625edd43537_JaffaCakes118
- Size
  
  156KB
- MD5
  
  65e86eb593cd24f71e33a625edd43537
- SHA1
  
  03374072405bedc4e8d92523b5b24dc341dd9ff3
- SHA256
  
  4d2c1a8b392f7e955854c467030089da5127d04ecb759fadc22f025af0442627
- SHA512
  
  9ba1b9cf364d3834f5e31a470df91920c87fc43e83f59b552378aa2a7d0541c54a6004c6b64a823f484a1f61b763b32b85e34a9ffbe446d71f147a1d1a26d95e
- SSDEEP
  
  3072:JGu9BlfzWIbXWm+w0Js5iWR4GTShhUYld/TAxu8FlCYQL0uz05SEX:J/0uog4GTMon+Y40uQV
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2