d1532d2341ecef53a7208bb045cbc42546c70a15a4e3e762ffb429a633d0e529 | Triage

Sharing

General

Target

92c3299633ba36dea0afad14fdc45756_JaffaCakes118
Size

63KB
Sample

240813-mzxhbsthjl
MD5

92c3299633ba36dea0afad14fdc45756
SHA1

ba376205e08679e6a92cfc16f103ddffe823102b
SHA256

d1532d2341ecef53a7208bb045cbc42546c70a15a4e3e762ffb429a633d0e529
SHA512

0e3561e8319de9e2333bf88e7e1c183d337301531af92024d1ca9134d8d744cb0ee8b9081566de1450674cc5ea01523c39dfbe92dfac96121dfc99ef477e1ca0
SSDEEP

1536:TXKrwMc47/zIeSVBHBrWDK/t/LgrS+PQ6O:TarQm/0eiBHZWDG/LX+PQ6O

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  92c3299633ba36dea0afad14fdc45756_JaffaCakes118
- Size
  
  63KB
- MD5
  
  92c3299633ba36dea0afad14fdc45756
- SHA1
  
  ba376205e08679e6a92cfc16f103ddffe823102b
- SHA256
  
  d1532d2341ecef53a7208bb045cbc42546c70a15a4e3e762ffb429a633d0e529
- SHA512
  
  0e3561e8319de9e2333bf88e7e1c183d337301531af92024d1ca9134d8d744cb0ee8b9081566de1450674cc5ea01523c39dfbe92dfac96121dfc99ef477e1ca0
- SSDEEP
  
  1536:TXKrwMc47/zIeSVBHBrWDK/t/LgrS+PQ6O:TarQm/0eiBHZWDG/LX+PQ6O
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2