c3ec5b18ef75edadd33e0448d7d8ee0d0091d329c9b8cf29465d1002eed672ee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

68206b212711a151d8588753cae76901_JaffaCakes118
Size

1017KB
Sample

240723-stjbeazcme
MD5

68206b212711a151d8588753cae76901
SHA1

a2f21af8262b985c506638c6d9c219a87962d205
SHA256

c3ec5b18ef75edadd33e0448d7d8ee0d0091d329c9b8cf29465d1002eed672ee
SHA512

410888bb4967d4a05222a7025617ad6673c3172a3f29e03e429f8fe83b4b5916ffd78c9d42bada45c55e201a096b6ef0d54955e1cef5f2d1eb5b2e625132d0ea
SSDEEP

12288:s4X2uG0GzML6Onkc/rxQH5X2hXfkLe81+PWZlZIIvwN/jotQAWhaeF3Hfji3wOeU:bk2NQH5GxV6gWeV/6Ih7F3T8

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  68206b212711a151d8588753cae76901_JaffaCakes118
- Size
  
  1017KB
- MD5
  
  68206b212711a151d8588753cae76901
- SHA1
  
  a2f21af8262b985c506638c6d9c219a87962d205
- SHA256
  
  c3ec5b18ef75edadd33e0448d7d8ee0d0091d329c9b8cf29465d1002eed672ee
- SHA512
  
  410888bb4967d4a05222a7025617ad6673c3172a3f29e03e429f8fe83b4b5916ffd78c9d42bada45c55e201a096b6ef0d54955e1cef5f2d1eb5b2e625132d0ea
- SSDEEP
  
  12288:s4X2uG0GzML6Onkc/rxQH5X2hXfkLe81+PWZlZIIvwN/jotQAWhaeF3Hfji3wOeU:bk2NQH5GxV6gWeV/6Ih7F3T8
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2