f4614301a0eefada653f4184dd42e8d56d8a2f07ed91f6849343b9afd966ece8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

81f30c20ee9d293504995e703ed85fa3_JaffaCakes118
Size

345KB
Sample

240801-18malstdkc
MD5

81f30c20ee9d293504995e703ed85fa3
SHA1

fab479703f373220acaf67b6f1b98214d8466b64
SHA256

f4614301a0eefada653f4184dd42e8d56d8a2f07ed91f6849343b9afd966ece8
SHA512

680743a87f4fda75f6c6c08c72a2f15ffb51a65381088edefa1d2ca2dffdd858cd0a15563b57243e072492d7eca20839d3b3820e6c8c0d6f2d62e947ab2e2d47
SSDEEP

6144:SrP0KT5VBzqanSFW9RhTr3/siVZByLFEjrfCLQoYW2Tq+lfe9DVM3S5I:45VB2anDR/zBieKLQor+NelV8OI

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  81f30c20ee9d293504995e703ed85fa3_JaffaCakes118
- Size
  
  345KB
- MD5
  
  81f30c20ee9d293504995e703ed85fa3
- SHA1
  
  fab479703f373220acaf67b6f1b98214d8466b64
- SHA256
  
  f4614301a0eefada653f4184dd42e8d56d8a2f07ed91f6849343b9afd966ece8
- SHA512
  
  680743a87f4fda75f6c6c08c72a2f15ffb51a65381088edefa1d2ca2dffdd858cd0a15563b57243e072492d7eca20839d3b3820e6c8c0d6f2d62e947ab2e2d47
- SSDEEP
  
  6144:SrP0KT5VBzqanSFW9RhTr3/siVZByLFEjrfCLQoYW2Tq+lfe9DVM3S5I:45VB2anDR/zBieKLQor+NelV8OI
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2