d0c912b14587f719b5f0dda76d93541dad2b756a9f7aef46d333cff44cfc66df | Triage

Sharing

General

Target

8eb3fc6f5b153efb94978771f570f6da_JaffaCakes118
Size

91KB
Sample

240812-pefp7a1akm
MD5

8eb3fc6f5b153efb94978771f570f6da
SHA1

cc0075ca280e51419ffefd5224069514e57bf7bb
SHA256

d0c912b14587f719b5f0dda76d93541dad2b756a9f7aef46d333cff44cfc66df
SHA512

a483a2b408be897f9cbc523060da53389ab5cdd7f8c070eca4145e509017de04217548e89e6695165aa9a6a0b72464e42b565d3dc760ec80a0e5cab860707ceb
SSDEEP

1536:DNB233APNR21mvJZUqjL+NYXKG53KXgq7z9hO42JVSmd59o:DNB233APNpD+ancCtJVSmd5m

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  8eb3fc6f5b153efb94978771f570f6da_JaffaCakes118
- Size
  
  91KB
- MD5
  
  8eb3fc6f5b153efb94978771f570f6da
- SHA1
  
  cc0075ca280e51419ffefd5224069514e57bf7bb
- SHA256
  
  d0c912b14587f719b5f0dda76d93541dad2b756a9f7aef46d333cff44cfc66df
- SHA512
  
  a483a2b408be897f9cbc523060da53389ab5cdd7f8c070eca4145e509017de04217548e89e6695165aa9a6a0b72464e42b565d3dc760ec80a0e5cab860707ceb
- SSDEEP
  
  1536:DNB233APNR21mvJZUqjL+NYXKG53KXgq7z9hO42JVSmd59o:DNB233APNpD+ancCtJVSmd5m
Score

8^/10

discovery persistence
- Adds policy Run key to start application
  persistence
- Drops file in Drivers directory
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence