dbc6236ccf42a9ef283bd9c779e18d2c98d9fa91e0da92016956cc83ba581ced | Triage

Sharing

General

Target

8ec86efd75e1b06ab83f150c625d97e5_JaffaCakes118
Size

132KB
Sample

240812-pv2btsvhrh
MD5

8ec86efd75e1b06ab83f150c625d97e5
SHA1

9beeae370c625b4cd5a8276624a1bd6b9ce0ddab
SHA256

dbc6236ccf42a9ef283bd9c779e18d2c98d9fa91e0da92016956cc83ba581ced
SHA512

21ba84637694055a26c5f015083c021e708b1a648e5761318dde26fea2953daaef42a2b734a1c8ec3de36d5e44443a2be3fdbd63ae7d750eb9a513786438b3bf
SSDEEP

3072:IwjQUimS8Si3JoMNHC/LEWMEvYBj4cMvvl1ZBrT0m+w20LHxZ:ImQJT8bv5C/LEWvvYZmzjg4Lf

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  8ec86efd75e1b06ab83f150c625d97e5_JaffaCakes118
- Size
  
  132KB
- MD5
  
  8ec86efd75e1b06ab83f150c625d97e5
- SHA1
  
  9beeae370c625b4cd5a8276624a1bd6b9ce0ddab
- SHA256
  
  dbc6236ccf42a9ef283bd9c779e18d2c98d9fa91e0da92016956cc83ba581ced
- SHA512
  
  21ba84637694055a26c5f015083c021e708b1a648e5761318dde26fea2953daaef42a2b734a1c8ec3de36d5e44443a2be3fdbd63ae7d750eb9a513786438b3bf
- SSDEEP
  
  3072:IwjQUimS8Si3JoMNHC/LEWMEvYBj4cMvvl1ZBrT0m+w20LHxZ:ImQJT8bv5C/LEWvvYZmzjg4Lf
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2
- Target
  
  Nativeobjsvc.dll
- Size
  
  148KB
- MD5
  
  1a0318710a0f8cb9db4b1b3d75cac0cc
- SHA1
  
  cc94379a2f3e03e188e31696ff50ec0c043b7488
- SHA256
  
  2532baed38224d31f1448646ea6e70b531379dda6527b14c9b234c28ffd11042
- SHA512
  
  c027a92b3c9e80b2ffb017f4b1555cb054f00cee40b8039fb72ac15e777d2b94ff3601659c625c7c2b2a8584a989a4878db338dac6afbf906f7fac633f12b0d6
- SSDEEP
  
  3072:IL88tsy38hV9lpyn+oM87qq+gBX1ywpaeuxy0W1/gyM8Kd:oRtgfknC8O2BX1Paej5/gJd
Score

3^/10

discovery
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence

behavioral3

behavioral4