bc505c4ce3395b30d192b78a5c95af613a62fd7b79b0447e971284c39465f08e | Triage

Sharing

General

Target

9548474e75079f2f1415bc92c45fde00_JaffaCakes118
Size

52KB
Sample

240814-j33lza1gpb
MD5

9548474e75079f2f1415bc92c45fde00
SHA1

9482b3229ceeb2d16853eed65197f4f3097ba540
SHA256

bc505c4ce3395b30d192b78a5c95af613a62fd7b79b0447e971284c39465f08e
SHA512

f396ea4668eb8d3ec62a3c6d4cb51369645f26c72806b6ba31b1f10fd9decfbafdf2e01ab3872d51f995caf3dc7f0d5fe8e9556e7e0fd175813075f84c0c7b11
SSDEEP

768:Cmapf1imA3Zn5SViDrAFiZpyqcXBsGJkar0LdFRqbyn:CmOPA3iViDrAU/pksGJ4LdDqbo

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  9548474e75079f2f1415bc92c45fde00_JaffaCakes118
- Size
  
  52KB
- MD5
  
  9548474e75079f2f1415bc92c45fde00
- SHA1
  
  9482b3229ceeb2d16853eed65197f4f3097ba540
- SHA256
  
  bc505c4ce3395b30d192b78a5c95af613a62fd7b79b0447e971284c39465f08e
- SHA512
  
  f396ea4668eb8d3ec62a3c6d4cb51369645f26c72806b6ba31b1f10fd9decfbafdf2e01ab3872d51f995caf3dc7f0d5fe8e9556e7e0fd175813075f84c0c7b11
- SSDEEP
  
  768:Cmapf1imA3Zn5SViDrAFiZpyqcXBsGJkar0LdFRqbyn:CmOPA3iViDrAU/pksGJ4LdDqbo
Score

10^/10

discovery persistence
- Modifies WinLogon for persistence
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence