b92e7d350afa5e565f3f90e2a910f5fb1f667c3b35a7725a35942656ee8ec151 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b74eebaa4e92fc33602b6ce7bcae9c9d_JaffaCakes118
Size

956KB
Sample

240822-mnxzqaverr
MD5

b74eebaa4e92fc33602b6ce7bcae9c9d
SHA1

5a80191c60962913cde349a66c481b6e68441a20
SHA256

b92e7d350afa5e565f3f90e2a910f5fb1f667c3b35a7725a35942656ee8ec151
SHA512

a59568a9617603fd5dee66db4ea5c2910c5890c79bd67cf697af96180f2c89cfef2a6c65b52cb83667abb6e4251d83a789cd26054c7a738904302374fcb21815
SSDEEP

24576:MiF/a2T2gMrTKQASst1avVWjtQ4Gjith:XF/T2foH+dWhSMh

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  b74eebaa4e92fc33602b6ce7bcae9c9d_JaffaCakes118
- Size
  
  956KB
- MD5
  
  b74eebaa4e92fc33602b6ce7bcae9c9d
- SHA1
  
  5a80191c60962913cde349a66c481b6e68441a20
- SHA256
  
  b92e7d350afa5e565f3f90e2a910f5fb1f667c3b35a7725a35942656ee8ec151
- SHA512
  
  a59568a9617603fd5dee66db4ea5c2910c5890c79bd67cf697af96180f2c89cfef2a6c65b52cb83667abb6e4251d83a789cd26054c7a738904302374fcb21815
- SSDEEP
  
  24576:MiF/a2T2gMrTKQASst1avVWjtQ4Gjith:XF/T2foH+dWhSMh
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence