89f51809c76eace756a09b5ee09ea76659c38c3e87050a6c64bd75b632238b9b | Triage

Sharing

General

Target

05280a5b1f6eb9a2933d772558037ded_JaffaCakes118
Size

239KB
Sample

240728-b44awstgqa
MD5

05280a5b1f6eb9a2933d772558037ded
SHA1

012780b59dddd11e587e775c9ae9a454c6cf5e56
SHA256

89f51809c76eace756a09b5ee09ea76659c38c3e87050a6c64bd75b632238b9b
SHA512

8f48fc89d38a5e966a931b5dfb03e4c376a087e8a35d334fc0d78cc23c53b72cad0baa49b1f87376739268dd7a8afd8ff8ecdd46738f4cd48eaf03909991b6c4
SSDEEP

6144:rqppuGRYx4H712f/SBTpzZA6rXD40b+7TJS5:rqpNtb1YIp9AI4FS5

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  05280a5b1f6eb9a2933d772558037ded_JaffaCakes118
- Size
  
  239KB
- MD5
  
  05280a5b1f6eb9a2933d772558037ded
- SHA1
  
  012780b59dddd11e587e775c9ae9a454c6cf5e56
- SHA256
  
  89f51809c76eace756a09b5ee09ea76659c38c3e87050a6c64bd75b632238b9b
- SHA512
  
  8f48fc89d38a5e966a931b5dfb03e4c376a087e8a35d334fc0d78cc23c53b72cad0baa49b1f87376739268dd7a8afd8ff8ecdd46738f4cd48eaf03909991b6c4
- SSDEEP
  
  6144:rqppuGRYx4H712f/SBTpzZA6rXD40b+7TJS5:rqpNtb1YIp9AI4FS5
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence