b3cfe0d9cda79207da4390e723d384d73c5bcd264acd1ce8cafe0519a871ca98 | Triage

Sharing

General

Target

8dbbef6b1547a85042d1990d4cf4a2ab_JaffaCakes118
Size

80KB
Sample

240812-hmq3kathka
MD5

8dbbef6b1547a85042d1990d4cf4a2ab
SHA1

7101be432e179af3b0559fc88a5bb83f1fa0b0d8
SHA256

b3cfe0d9cda79207da4390e723d384d73c5bcd264acd1ce8cafe0519a871ca98
SHA512

8e1e859644cf853f0edfa95f72327d619678f5902a5dfb625a9916578290f50a5bfa83b608bd2eaf29a6625f6ed2d7766f6a40f21c55cff5fd12ce75e7c416fe
SSDEEP

768:LkZnllaQYTYqpEgzwpXRfQ56FKvqrCHwqkw1UAkO2RL:onlsEqRzcQ56FKwwZZ2RL

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  8dbbef6b1547a85042d1990d4cf4a2ab_JaffaCakes118
- Size
  
  80KB
- MD5
  
  8dbbef6b1547a85042d1990d4cf4a2ab
- SHA1
  
  7101be432e179af3b0559fc88a5bb83f1fa0b0d8
- SHA256
  
  b3cfe0d9cda79207da4390e723d384d73c5bcd264acd1ce8cafe0519a871ca98
- SHA512
  
  8e1e859644cf853f0edfa95f72327d619678f5902a5dfb625a9916578290f50a5bfa83b608bd2eaf29a6625f6ed2d7766f6a40f21c55cff5fd12ce75e7c416fe
- SSDEEP
  
  768:LkZnllaQYTYqpEgzwpXRfQ56FKvqrCHwqkw1UAkO2RL:onlsEqRzcQ56FKwwZZ2RL
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence