e273c45ffaf9860845355bec0c4f3a4ad08b8ef3bec4200f36169b2806f77cbe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

73b63aaa10eb34ff29f279b65b96c5bb_JaffaCakes118
Size

315KB
Sample

240726-mr477sseqr
MD5

73b63aaa10eb34ff29f279b65b96c5bb
SHA1

117568575639cbb99a98dbb05d5c5de2b61e3482
SHA256

e273c45ffaf9860845355bec0c4f3a4ad08b8ef3bec4200f36169b2806f77cbe
SHA512

6271ac0663ae8d7ea369360e4ffb7f2a39dd48c820c373f58873089ec28470a0fcbdb5ab118c5da484bf099e041779ccad00fd63581ebb90374f58a8ba0e3695
SSDEEP

6144:Euo4d6BDMIOyMj7occlbUTBfl7/AOgnnPVYKm:En4INMdySccY4Thl7/mYN

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  73b63aaa10eb34ff29f279b65b96c5bb_JaffaCakes118
- Size
  
  315KB
- MD5
  
  73b63aaa10eb34ff29f279b65b96c5bb
- SHA1
  
  117568575639cbb99a98dbb05d5c5de2b61e3482
- SHA256
  
  e273c45ffaf9860845355bec0c4f3a4ad08b8ef3bec4200f36169b2806f77cbe
- SHA512
  
  6271ac0663ae8d7ea369360e4ffb7f2a39dd48c820c373f58873089ec28470a0fcbdb5ab118c5da484bf099e041779ccad00fd63581ebb90374f58a8ba0e3695
- SSDEEP
  
  6144:Euo4d6BDMIOyMj7occlbUTBfl7/AOgnnPVYKm:En4INMdySccY4Thl7/mYN
Score

10^/10

discovery persistence
- Modifies WinLogon for persistence
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence