c02e35aa90a8a5003feb5e830ec7a1eb461e8d2c79dbe8c72419a0fe864719ca | Triage

Sharing

General

Target

6a135c2e3ba5e6655ee27bf60a359e53_JaffaCakes118
Size

806KB
Sample

240724-d1qlqsyfnc
MD5

6a135c2e3ba5e6655ee27bf60a359e53
SHA1

36713a2c3908567bbf0cd18aa944a522e5d915fc
SHA256

c02e35aa90a8a5003feb5e830ec7a1eb461e8d2c79dbe8c72419a0fe864719ca
SHA512

05ad73463914b584c8b83f2d8e796f596f34c13fe3f6680b617e03b1dfe32cd3e1776e693d4561eaab617228760c3e1d37c49027116cfde5e3386af5ad366033
SSDEEP

12288:1vD+a+J195bR+uSGtZ3pgWKQqnuOHzrV3Dr7Ilnk39yS:17HK5N+cLJKQmHzrV3nMkd

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  6a135c2e3ba5e6655ee27bf60a359e53_JaffaCakes118
- Size
  
  806KB
- MD5
  
  6a135c2e3ba5e6655ee27bf60a359e53
- SHA1
  
  36713a2c3908567bbf0cd18aa944a522e5d915fc
- SHA256
  
  c02e35aa90a8a5003feb5e830ec7a1eb461e8d2c79dbe8c72419a0fe864719ca
- SHA512
  
  05ad73463914b584c8b83f2d8e796f596f34c13fe3f6680b617e03b1dfe32cd3e1776e693d4561eaab617228760c3e1d37c49027116cfde5e3386af5ad366033
- SSDEEP
  
  12288:1vD+a+J195bR+uSGtZ3pgWKQqnuOHzrV3Dr7Ilnk39yS:17HK5N+cLJKQmHzrV3nMkd
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence