c12316874209ae5b9e6630f32b55b692b2efaf7fabc782161b87f2e13caf3095 | Triage

Sharing

General

Target

8459188cc1394df714d870adea706034_JaffaCakes118
Size

120KB
Sample

240810-b4khsazepk
MD5

8459188cc1394df714d870adea706034
SHA1

a025cbaf849652779e35cac264744272c358a47d
SHA256

c12316874209ae5b9e6630f32b55b692b2efaf7fabc782161b87f2e13caf3095
SHA512

a0f2339a9e2d92d76f265ce9d4400693507eabd0e323cd5cb51bc0a141d68c173bb3fbe1781d96bb24cca52dcf1b8b88c0e8c643e479bbec4222fdb21f28e04d
SSDEEP

3072:1G+WyfC/y5F2EoYXWqAVcMvICniw7lzrJawlVDLgyotnphtSZY+2AO:MI8yWEo8MvICn/5Xgyen5SitF

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  8459188cc1394df714d870adea706034_JaffaCakes118
- Size
  
  120KB
- MD5
  
  8459188cc1394df714d870adea706034
- SHA1
  
  a025cbaf849652779e35cac264744272c358a47d
- SHA256
  
  c12316874209ae5b9e6630f32b55b692b2efaf7fabc782161b87f2e13caf3095
- SHA512
  
  a0f2339a9e2d92d76f265ce9d4400693507eabd0e323cd5cb51bc0a141d68c173bb3fbe1781d96bb24cca52dcf1b8b88c0e8c643e479bbec4222fdb21f28e04d
- SSDEEP
  
  3072:1G+WyfC/y5F2EoYXWqAVcMvICniw7lzrJawlVDLgyotnphtSZY+2AO:MI8yWEo8MvICn/5Xgyen5SitF
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence