f2910adb30a6f61cbc56141f8625c1ec46ba631e6856616f716ca0e390beb824 | Triage

Sharing

General

Target

bce1c4eab4cc9dc82cce0f360ce22edb_JaffaCakes118
Size

84KB
Sample

240823-x6dznssbqh
MD5

bce1c4eab4cc9dc82cce0f360ce22edb
SHA1

15ea0e6a88f2c1979dd3d6f135f4591031baf639
SHA256

f2910adb30a6f61cbc56141f8625c1ec46ba631e6856616f716ca0e390beb824
SHA512

73f4b7a1bc8e3153baa10a60cdbd3231f977c082f000a980f73c9d2334c96882b73c238eea8c84a35fc570ab372c70db6d0a5017c7c36b8b2c1616db2ed5e80b
SSDEEP

1536:9uJAbqy3Zoz21uNfuiLOeWGNOJ6IDo5gkR4GxoRZsQvo2t:9AtypoU2LORGNOhKgkRP2t

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  bce1c4eab4cc9dc82cce0f360ce22edb_JaffaCakes118
- Size
  
  84KB
- MD5
  
  bce1c4eab4cc9dc82cce0f360ce22edb
- SHA1
  
  15ea0e6a88f2c1979dd3d6f135f4591031baf639
- SHA256
  
  f2910adb30a6f61cbc56141f8625c1ec46ba631e6856616f716ca0e390beb824
- SHA512
  
  73f4b7a1bc8e3153baa10a60cdbd3231f977c082f000a980f73c9d2334c96882b73c238eea8c84a35fc570ab372c70db6d0a5017c7c36b8b2c1616db2ed5e80b
- SSDEEP
  
  1536:9uJAbqy3Zoz21uNfuiLOeWGNOJ6IDo5gkR4GxoRZsQvo2t:9AtypoU2LORGNOhKgkRP2t
Score

8^/10

discovery persistence
- Adds policy Run key to start application
  persistence
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence