669efd43aef27d963a06517e36cd97b1aa11861f0498241043e1b47809a225d2 | Triage

Sharing

General

Target

73c56b67cde9fc286c21a9db4e985a64_JaffaCakes118
Size

104KB
Sample

240726-m46a2axfpd
MD5

73c56b67cde9fc286c21a9db4e985a64
SHA1

4d362769c564ebb5f4e9097c49e9f71cb56b3f80
SHA256

669efd43aef27d963a06517e36cd97b1aa11861f0498241043e1b47809a225d2
SHA512

c6d1a9b14cc17036486f8dadac2786618e414370f1114ef9253f3fd35e4834dd192f88fea8da0e05dc55b0762f6f0445095f14593e2f4743eca8b33590793f43
SSDEEP

3072:jLCudzzegDgxXee5/Umz2lG32ER47BVFOq0K10C8Rn:j/z45/Uk2M3Q7JOFKw

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  73c56b67cde9fc286c21a9db4e985a64_JaffaCakes118
- Size
  
  104KB
- MD5
  
  73c56b67cde9fc286c21a9db4e985a64
- SHA1
  
  4d362769c564ebb5f4e9097c49e9f71cb56b3f80
- SHA256
  
  669efd43aef27d963a06517e36cd97b1aa11861f0498241043e1b47809a225d2
- SHA512
  
  c6d1a9b14cc17036486f8dadac2786618e414370f1114ef9253f3fd35e4834dd192f88fea8da0e05dc55b0762f6f0445095f14593e2f4743eca8b33590793f43
- SSDEEP
  
  3072:jLCudzzegDgxXee5/Umz2lG32ER47BVFOq0K10C8Rn:j/z45/Uk2M3Q7JOFKw
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence