52caa92241b2e093b7dd46de333035d36348aae5499166738b74fd6477c4bff4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

baf4f7ae6951ad71f12e478d6becbbef_JaffaCakes118
Size

1.9MB
Sample

240823-j36cvswaql
MD5

baf4f7ae6951ad71f12e478d6becbbef
SHA1

5ac49bcbaef35ccf78e913d3f0651d1eb746a966
SHA256

52caa92241b2e093b7dd46de333035d36348aae5499166738b74fd6477c4bff4
SHA512

962dc8142ced7e9d80ad569c4ebf8d7c328788b57643917e83f911e664eec7b67680f594aa0fe6354ec7416da2c3a4687fe7518e368055b2aa370e0ecace716f
SSDEEP

24576:ow/BBBjXKT1DaIFZAH9MVYWkENLbvlT/w000000MdSKrIWK9exHT9UQ:dBXjXKT1Ddz9T/w000000M3rTT7

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  baf4f7ae6951ad71f12e478d6becbbef_JaffaCakes118
- Size
  
  1.9MB
- MD5
  
  baf4f7ae6951ad71f12e478d6becbbef
- SHA1
  
  5ac49bcbaef35ccf78e913d3f0651d1eb746a966
- SHA256
  
  52caa92241b2e093b7dd46de333035d36348aae5499166738b74fd6477c4bff4
- SHA512
  
  962dc8142ced7e9d80ad569c4ebf8d7c328788b57643917e83f911e664eec7b67680f594aa0fe6354ec7416da2c3a4687fe7518e368055b2aa370e0ecace716f
- SSDEEP
  
  24576:ow/BBBjXKT1DaIFZAH9MVYWkENLbvlT/w000000MdSKrIWK9exHT9UQ:dBXjXKT1Ddz9T/w000000M3rTT7
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence