1fa2833196a59a288872f71846864065cd15d934b5850af7b6b10e8d8e2129b5 | Triage

Sharing

General

Target

a36ab17af3a54a76322d99281c25056e_JaffaCakes118
Size

1.1MB
Sample

240817-vrld4axakf
MD5

a36ab17af3a54a76322d99281c25056e
SHA1

4218e79f67dd4ffa485c95596ea061770fa54a6b
SHA256

1fa2833196a59a288872f71846864065cd15d934b5850af7b6b10e8d8e2129b5
SHA512

0780b77b51d3a9aa689157386db6cf5870aa9be545dc23bda419251b0d1a63eda0a64f13abe8e4647aef80aff79b16b0dfa50753467d5fc0c5e0c742a55e36e1
SSDEEP

24576:nqrCuAzHqZZezMjvArEPgsdYyxzK/RQluhqxIWDWE8iXZQM:qczQ+eud35IVIWD1XZQ

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  a36ab17af3a54a76322d99281c25056e_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  a36ab17af3a54a76322d99281c25056e
- SHA1
  
  4218e79f67dd4ffa485c95596ea061770fa54a6b
- SHA256
  
  1fa2833196a59a288872f71846864065cd15d934b5850af7b6b10e8d8e2129b5
- SHA512
  
  0780b77b51d3a9aa689157386db6cf5870aa9be545dc23bda419251b0d1a63eda0a64f13abe8e4647aef80aff79b16b0dfa50753467d5fc0c5e0c742a55e36e1
- SSDEEP
  
  24576:nqrCuAzHqZZezMjvArEPgsdYyxzK/RQluhqxIWDWE8iXZQM:qczQ+eud35IVIWD1XZQ
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2