0461dfd946bcf53a4cb1aaacd4e16bdd931c4770980c9dca32908ade67215a83 | Triage

Sharing

General

Target

b4c540b1e8f598931cb678499f195da3_JaffaCakes118
Size

100KB
Sample

240821-yc4tnszhrm
MD5

b4c540b1e8f598931cb678499f195da3
SHA1

90b8658e3f7dfa2d859416ec79fc435583309ed7
SHA256

0461dfd946bcf53a4cb1aaacd4e16bdd931c4770980c9dca32908ade67215a83
SHA512

0083b4907e158d819790f326dbfe7cfe7a5362724e1e4408f9c8d1cc9b622564eead699ce019c0e04264faeaf3efb829e06ec4fb71379830662d40414d01e6cb
SSDEEP

1536:uxlc7A72Uziq3igvI+Ggcj9m6HarshoEpjXFjaoBnqyS:qwM3igIqcj9zfogdBnqyS

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  b4c540b1e8f598931cb678499f195da3_JaffaCakes118
- Size
  
  100KB
- MD5
  
  b4c540b1e8f598931cb678499f195da3
- SHA1
  
  90b8658e3f7dfa2d859416ec79fc435583309ed7
- SHA256
  
  0461dfd946bcf53a4cb1aaacd4e16bdd931c4770980c9dca32908ade67215a83
- SHA512
  
  0083b4907e158d819790f326dbfe7cfe7a5362724e1e4408f9c8d1cc9b622564eead699ce019c0e04264faeaf3efb829e06ec4fb71379830662d40414d01e6cb
- SSDEEP
  
  1536:uxlc7A72Uziq3igvI+Ggcj9m6HarshoEpjXFjaoBnqyS:qwM3igIqcj9zfogdBnqyS
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence