6a3052e5193c5cbbfd6467a46a5e3b81f32ebc043a495573d7ad477f5b3d7a8e | Triage

Sharing

General

Target

b9a93d970600e8d0d33486ff79b41e4d_JaffaCakes118
Size

104KB
Sample

240823-asjaxaybmj
MD5

b9a93d970600e8d0d33486ff79b41e4d
SHA1

879381d8208fc8fbdcd7163df5f93f1370ac1fc3
SHA256

6a3052e5193c5cbbfd6467a46a5e3b81f32ebc043a495573d7ad477f5b3d7a8e
SHA512

68637297b3d7ef43eddeae73f97c143fe30ff3b6cb2865cd839490b1d304af614b0b58efe4789d6ef68c5bdd35147bfe98fda8eb59a335c84c34f42206c05936
SSDEEP

1536:1JMmtF2zHXS0TaJd09P3FYVqm9g1HMyHW2I:1JM0F27C0m01VYbyFMQ

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  b9a93d970600e8d0d33486ff79b41e4d_JaffaCakes118
- Size
  
  104KB
- MD5
  
  b9a93d970600e8d0d33486ff79b41e4d
- SHA1
  
  879381d8208fc8fbdcd7163df5f93f1370ac1fc3
- SHA256
  
  6a3052e5193c5cbbfd6467a46a5e3b81f32ebc043a495573d7ad477f5b3d7a8e
- SHA512
  
  68637297b3d7ef43eddeae73f97c143fe30ff3b6cb2865cd839490b1d304af614b0b58efe4789d6ef68c5bdd35147bfe98fda8eb59a335c84c34f42206c05936
- SSDEEP
  
  1536:1JMmtF2zHXS0TaJd09P3FYVqm9g1HMyHW2I:1JM0F27C0m01VYbyFMQ
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence