fcc3dae12e4c1b85bc34c2125402b7b89caa5e47d0f8fd93e6884953111cf4c3 | Triage

Sharing

General

Target

6882f3b09c37cb03cc188752a4777f2b_JaffaCakes118
Size

308KB
Sample

240723-vyc2astejd
MD5

6882f3b09c37cb03cc188752a4777f2b
SHA1

a81d45fc047b0b429118d6712faef37b1d50e8ca
SHA256

fcc3dae12e4c1b85bc34c2125402b7b89caa5e47d0f8fd93e6884953111cf4c3
SHA512

ba0624ae05bf7ad05ebac4faafc0e2ca52f45471a8b52dc05521cdf7ac6c44e0d538d68f19ec5bb8dcb4e84c0fd65c88f14f9bce8d0935f28ae0e3163e710b78
SSDEEP

6144:HBPoCsDHgIdjFp9zP8TjrDolnORHhP2LTFK2/P8RFaYrTYJ8INv6:HBQCsUIdjFj8Tjr0lnIhPQTf/P8uYYFv

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  6882f3b09c37cb03cc188752a4777f2b_JaffaCakes118
- Size
  
  308KB
- MD5
  
  6882f3b09c37cb03cc188752a4777f2b
- SHA1
  
  a81d45fc047b0b429118d6712faef37b1d50e8ca
- SHA256
  
  fcc3dae12e4c1b85bc34c2125402b7b89caa5e47d0f8fd93e6884953111cf4c3
- SHA512
  
  ba0624ae05bf7ad05ebac4faafc0e2ca52f45471a8b52dc05521cdf7ac6c44e0d538d68f19ec5bb8dcb4e84c0fd65c88f14f9bce8d0935f28ae0e3163e710b78
- SSDEEP
  
  6144:HBPoCsDHgIdjFp9zP8TjrDolnORHhP2LTFK2/P8RFaYrTYJ8INv6:HBQCsUIdjFj8Tjr0lnIhPQTf/P8uYYFv
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2