acdc94f62030324d5f042e972abd3947751c8e6b4068e7e055598e658e43c54f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ce261d6ffa74bc44471335147b7d5892_JaffaCakes118
Size

341KB
Sample

240905-3gp9asvcmc
MD5

ce261d6ffa74bc44471335147b7d5892
SHA1

04aee563b787bcf428c27c0bf406bea63be59390
SHA256

acdc94f62030324d5f042e972abd3947751c8e6b4068e7e055598e658e43c54f
SHA512

793b2f5b632e77d336a9b4cdae05c776572afa093cd2b998945bb7f7932dd15e35510b0fde515fc5159d7a2cba53673909b712c69e147c2a7e35f236f14d07f4
SSDEEP

6144:VmS7Spg1M7PyaQB74fo4UDblEzNENyRDUVpbCmV7WLXIqW:VduWCP/kMWDblsNjDmJWLu

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  ce261d6ffa74bc44471335147b7d5892_JaffaCakes118
- Size
  
  341KB
- MD5
  
  ce261d6ffa74bc44471335147b7d5892
- SHA1
  
  04aee563b787bcf428c27c0bf406bea63be59390
- SHA256
  
  acdc94f62030324d5f042e972abd3947751c8e6b4068e7e055598e658e43c54f
- SHA512
  
  793b2f5b632e77d336a9b4cdae05c776572afa093cd2b998945bb7f7932dd15e35510b0fde515fc5159d7a2cba53673909b712c69e147c2a7e35f236f14d07f4
- SSDEEP
  
  6144:VmS7Spg1M7PyaQB74fo4UDblEzNENyRDUVpbCmV7WLXIqW:VduWCP/kMWDblsNjDmJWLu
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2