6fe1f6e018c76d1b9bf1ad80e661d1c5673d2e22794e716fdb9aac2e465ddbee | Triage

Sharing

General

Target

adde73d875a3088227c980a789409539_JaffaCakes118
Size

690KB
Sample

240820-e6mygatdkh
MD5

adde73d875a3088227c980a789409539
SHA1

bd269ac5ff745f32fcb020b883802876d17c172b
SHA256

6fe1f6e018c76d1b9bf1ad80e661d1c5673d2e22794e716fdb9aac2e465ddbee
SHA512

959c458bc530587ac49484891cf0b10df69ef3c7acb3cdd3689ed31d3d77480a2f3f833d0532d34d95a7bc630d3480ace6f349882df8ad4253d0c350058fee0c
SSDEEP

12288:dQLwWN+ulEnrGNYSd2JZo454Qw6m9F3Z4mxxmaMR0avRJexIQSeNhcL:d38+A0G/C066QmXHMuavRJe6QSWcL

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  adde73d875a3088227c980a789409539_JaffaCakes118
- Size
  
  690KB
- MD5
  
  adde73d875a3088227c980a789409539
- SHA1
  
  bd269ac5ff745f32fcb020b883802876d17c172b
- SHA256
  
  6fe1f6e018c76d1b9bf1ad80e661d1c5673d2e22794e716fdb9aac2e465ddbee
- SHA512
  
  959c458bc530587ac49484891cf0b10df69ef3c7acb3cdd3689ed31d3d77480a2f3f833d0532d34d95a7bc630d3480ace6f349882df8ad4253d0c350058fee0c
- SSDEEP
  
  12288:dQLwWN+ulEnrGNYSd2JZo454Qw6m9F3Z4mxxmaMR0avRJexIQSeNhcL:d38+A0G/C066QmXHMuavRJe6QSWcL
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence