405a520c42e4fc6118155c61e0ad968bd0665adeba0d1f06d9fe486e30ec52a6 | Triage

Sharing

General

Target

ab63eb18dfc215c912b5517994e157ed_JaffaCakes118
Size

47KB
Sample

240819-rs73pssfpr
MD5

ab63eb18dfc215c912b5517994e157ed
SHA1

ab77b5df30adf53fa0ed645508ccd0a2b1c5aa09
SHA256

405a520c42e4fc6118155c61e0ad968bd0665adeba0d1f06d9fe486e30ec52a6
SHA512

b91a1e4f87e2289467a99194b2fd99637958fa221a48646c868352fdbd320d5db64e981923e71819aaee042aca65148467bef8875fef5de193ca68d696203731
SSDEEP

768:qVRLk0VT6L7i8i9GaKQeK8fWpuK+JxHqTBYuccHNoQf406:qXvVmU9TeKNeCCcHfW

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  ab63eb18dfc215c912b5517994e157ed_JaffaCakes118
- Size
  
  47KB
- MD5
  
  ab63eb18dfc215c912b5517994e157ed
- SHA1
  
  ab77b5df30adf53fa0ed645508ccd0a2b1c5aa09
- SHA256
  
  405a520c42e4fc6118155c61e0ad968bd0665adeba0d1f06d9fe486e30ec52a6
- SHA512
  
  b91a1e4f87e2289467a99194b2fd99637958fa221a48646c868352fdbd320d5db64e981923e71819aaee042aca65148467bef8875fef5de193ca68d696203731
- SSDEEP
  
  768:qVRLk0VT6L7i8i9GaKQeK8fWpuK+JxHqTBYuccHNoQf406:qXvVmU9TeKNeCCcHfW
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence