4777b209ee883640e1b054cf16ccae108e73be25c486c9f95ce526c34d558e33 | Triage

Sharing

General

Target

b6b63bfdeb1eee1d064154740bb4537b_JaffaCakes118
Size

116KB
Sample

240822-hjaamsxalj
MD5

b6b63bfdeb1eee1d064154740bb4537b
SHA1

697b051358c1bb13c6148bba465bf5730d863d3d
SHA256

4777b209ee883640e1b054cf16ccae108e73be25c486c9f95ce526c34d558e33
SHA512

e83d30d5df1a7e2ef7cd8e8c4c0d7b3c0cd1f9f9c4d0321ee6bd2f0db98cc61195294231b699de00447672835e302cf8aead6905846e23ccbe70a4c4eb9a7fb2
SSDEEP

3072:ri0vfvw6W8fqVcAPGeAzxXlK9L7Ul9LwC3eXlozpI:rtXlWpOC7QF6aN

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  b6b63bfdeb1eee1d064154740bb4537b_JaffaCakes118
- Size
  
  116KB
- MD5
  
  b6b63bfdeb1eee1d064154740bb4537b
- SHA1
  
  697b051358c1bb13c6148bba465bf5730d863d3d
- SHA256
  
  4777b209ee883640e1b054cf16ccae108e73be25c486c9f95ce526c34d558e33
- SHA512
  
  e83d30d5df1a7e2ef7cd8e8c4c0d7b3c0cd1f9f9c4d0321ee6bd2f0db98cc61195294231b699de00447672835e302cf8aead6905846e23ccbe70a4c4eb9a7fb2
- SSDEEP
  
  3072:ri0vfvw6W8fqVcAPGeAzxXlK9L7Ul9LwC3eXlozpI:rtXlWpOC7QF6aN
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2