105ad8d11f9ac2e79566b4a23b39c362f9741213935797a944944cc130e2a543 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b8e36ae82735d027bb3107b64c6e25ac_JaffaCakes118
Size

397KB
Sample

240822-yd4kasthrh
MD5

b8e36ae82735d027bb3107b64c6e25ac
SHA1

79ddc6ee0bef1f351b21ef4683dcc3bee6a74bbd
SHA256

105ad8d11f9ac2e79566b4a23b39c362f9741213935797a944944cc130e2a543
SHA512

3269ae10b19a029a8cdfcf2af8509dee0068469a398936944f1bc55a408e376d04e354a3f86fa5fdf387c6e73b6b46585a15bf18bb7b4c1c87ef0f2f127410da
SSDEEP

6144:ONmi+kpdCF2idZecnl20lHRxp3gXncduD7yB9VCO6Sco4q8+dE6Cq+w:g8F3Z4mxxcDqVTVOC+w

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  b8e36ae82735d027bb3107b64c6e25ac_JaffaCakes118
- Size
  
  397KB
- MD5
  
  b8e36ae82735d027bb3107b64c6e25ac
- SHA1
  
  79ddc6ee0bef1f351b21ef4683dcc3bee6a74bbd
- SHA256
  
  105ad8d11f9ac2e79566b4a23b39c362f9741213935797a944944cc130e2a543
- SHA512
  
  3269ae10b19a029a8cdfcf2af8509dee0068469a398936944f1bc55a408e376d04e354a3f86fa5fdf387c6e73b6b46585a15bf18bb7b4c1c87ef0f2f127410da
- SSDEEP
  
  6144:ONmi+kpdCF2idZecnl20lHRxp3gXncduD7yB9VCO6Sco4q8+dE6Cq+w:g8F3Z4mxxcDqVTVOC+w
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence