0db4727450de7d3a2df3696ed8164375a7881c59838ed3683c3caac410e29153 | Triage

Sharing

General

Target

8adf698552b83e31658b8317348d4109_JaffaCakes118
Size

14KB
Sample

240811-sntvysvemk
MD5

8adf698552b83e31658b8317348d4109
SHA1

ad492dfc184b87b9fd2828ac44a0a62ff60f5786
SHA256

0db4727450de7d3a2df3696ed8164375a7881c59838ed3683c3caac410e29153
SHA512

d89d1f8c1eac2c994e7b8deefb55e0b1903a045be61f2fd96cd15235a1102b3e69fcaf5ffe2d2dceea70281e2c3e67dea6dd696199476cdde1098a44e31465e9
SSDEEP

192:y9Rv/P31/Rii+IyUVZjUzqbDRNQoth8MVAdW6fD6cx0kcufC7S+qPo5X4VWKAlvt:y9hXDdmKvjQVaAA676W0OfKSAN4/k

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  8adf698552b83e31658b8317348d4109_JaffaCakes118
- Size
  
  14KB
- MD5
  
  8adf698552b83e31658b8317348d4109
- SHA1
  
  ad492dfc184b87b9fd2828ac44a0a62ff60f5786
- SHA256
  
  0db4727450de7d3a2df3696ed8164375a7881c59838ed3683c3caac410e29153
- SHA512
  
  d89d1f8c1eac2c994e7b8deefb55e0b1903a045be61f2fd96cd15235a1102b3e69fcaf5ffe2d2dceea70281e2c3e67dea6dd696199476cdde1098a44e31465e9
- SSDEEP
  
  192:y9Rv/P31/Rii+IyUVZjUzqbDRNQoth8MVAdW6fD6cx0kcufC7S+qPo5X4VWKAlvt:y9hXDdmKvjQVaAA676W0OfKSAN4/k
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2