003f520beaee135b08c3eca156f1aafdf31a5924ce0862f774be274af0ed5b55 | Triage

Sharing

General

Target

acb5a6cbc03526fe33ce2fd0a87df78e_JaffaCakes118
Size

33KB
Sample

240819-1n4n6axepf
MD5

acb5a6cbc03526fe33ce2fd0a87df78e
SHA1

b65cd87b13e56bc12348419934d38515f0f2d0b7
SHA256

003f520beaee135b08c3eca156f1aafdf31a5924ce0862f774be274af0ed5b55
SHA512

e0a1f0c96ee875fa52bacdbb7eada20d5c7555fe912677cd4bfa1801ce3badd22c92838aa71cd87dc6502d28b5f5f2e37bc7b2f5fd886253d4c8c91661277abe
SSDEEP

768:rwsU8iDR2lleK79M0HxeiC+kP5mDSr5kRMULXl:rLUelHyhVx5m48LXl

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  acb5a6cbc03526fe33ce2fd0a87df78e_JaffaCakes118
- Size
  
  33KB
- MD5
  
  acb5a6cbc03526fe33ce2fd0a87df78e
- SHA1
  
  b65cd87b13e56bc12348419934d38515f0f2d0b7
- SHA256
  
  003f520beaee135b08c3eca156f1aafdf31a5924ce0862f774be274af0ed5b55
- SHA512
  
  e0a1f0c96ee875fa52bacdbb7eada20d5c7555fe912677cd4bfa1801ce3badd22c92838aa71cd87dc6502d28b5f5f2e37bc7b2f5fd886253d4c8c91661277abe
- SSDEEP
  
  768:rwsU8iDR2lleK79M0HxeiC+kP5mDSr5kRMULXl:rLUelHyhVx5m48LXl
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence