128dd42302d955ef55ecb23f133910dc102c0eaf575184548c4bb9cf757fc5f1 | Triage

Sharing

General

Target

ba45152476a37a0143f000d2241113a6_JaffaCakes118
Size

31KB
Sample

240823-ekhfvswgmn
MD5

ba45152476a37a0143f000d2241113a6
SHA1

985d5b2d73fa8aa54cd48e966fd16881568ccae3
SHA256

128dd42302d955ef55ecb23f133910dc102c0eaf575184548c4bb9cf757fc5f1
SHA512

7ed9cdfc92f73f13d47d8801dbe1c0f10ba9163ef37019a14a02301e7bdeab683b721532edf2838a60987bb897141e79f68a50b138f24b37f0498cd2436f3413
SSDEEP

384:blLU44nwgycRejM9kM/P3IdulSaxJYRQve59HC5npRJRfGe7uSUvqPvDaL:FU44nV5WK/vtise5YpxfN7LUvqjG

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  ba45152476a37a0143f000d2241113a6_JaffaCakes118
- Size
  
  31KB
- MD5
  
  ba45152476a37a0143f000d2241113a6
- SHA1
  
  985d5b2d73fa8aa54cd48e966fd16881568ccae3
- SHA256
  
  128dd42302d955ef55ecb23f133910dc102c0eaf575184548c4bb9cf757fc5f1
- SHA512
  
  7ed9cdfc92f73f13d47d8801dbe1c0f10ba9163ef37019a14a02301e7bdeab683b721532edf2838a60987bb897141e79f68a50b138f24b37f0498cd2436f3413
- SSDEEP
  
  384:blLU44nwgycRejM9kM/P3IdulSaxJYRQve59HC5npRJRfGe7uSUvqPvDaL:FU44nV5WK/vtise5YpxfN7LUvqjG
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence