df1abe3a6f9d6793820beddf47ae0eade191295ecd37eb0889b739344108b889 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c92026a8839b71a8d704216d37964501_JaffaCakes118
Size

689KB
Sample

240829-s7yy1s1eqq
MD5

c92026a8839b71a8d704216d37964501
SHA1

68ebd4766744cfec7354e7e74cf4cc0521672cd7
SHA256

df1abe3a6f9d6793820beddf47ae0eade191295ecd37eb0889b739344108b889
SHA512

52ea633e36aa9d8bd92a6b4031fb5a0dd154500875464d955c1825a2442750b47ae7a7cb4e0b8c15b3b9b53c88fb2defddaea64d4dbfaa287396e076b19c592b
SSDEEP

12288:DHq5bbbScM/o2glhuupB/TgpICb5MppcY33HF3Z4mxxODqVTVOCG:DHAD7huupB/TgpfOXVnQmXdVTzG

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  c92026a8839b71a8d704216d37964501_JaffaCakes118
- Size
  
  689KB
- MD5
  
  c92026a8839b71a8d704216d37964501
- SHA1
  
  68ebd4766744cfec7354e7e74cf4cc0521672cd7
- SHA256
  
  df1abe3a6f9d6793820beddf47ae0eade191295ecd37eb0889b739344108b889
- SHA512
  
  52ea633e36aa9d8bd92a6b4031fb5a0dd154500875464d955c1825a2442750b47ae7a7cb4e0b8c15b3b9b53c88fb2defddaea64d4dbfaa287396e076b19c592b
- SSDEEP
  
  12288:DHq5bbbScM/o2glhuupB/TgpICb5MppcY33HF3Z4mxxODqVTVOCG:DHAD7huupB/TgpfOXVnQmXdVTzG
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence