029fd89580879f7bd871d8b6e9ca3346f30822eb47fde56e422c46c7cfa9848e | Triage

Sharing

General

Target

e13fbe2c63e0d1147d6f7657f636af02_JaffaCakes118
Size

141KB
Sample

240914-3gdkhashmn
MD5

e13fbe2c63e0d1147d6f7657f636af02
SHA1

ea00c973b8583861e858d0bd13458feaff2c1224
SHA256

029fd89580879f7bd871d8b6e9ca3346f30822eb47fde56e422c46c7cfa9848e
SHA512

5578d68242fa5079e87bb6951d6523953ca1ade4578f4d6aef1ade05c2a1676c832579047a2c1ea7cc6b0a0a1a61991dc5bf48b362e388f1d3f4f00cb915d51e
SSDEEP

3072:0WRji7yss5/SA4WqoB8n1LjylDqyij2c8NQeHp+3wzpUv/Gmsr:0OJssVd4f1ylLAXeJZ9Uv/G/r

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  e13fbe2c63e0d1147d6f7657f636af02_JaffaCakes118
- Size
  
  141KB
- MD5
  
  e13fbe2c63e0d1147d6f7657f636af02
- SHA1
  
  ea00c973b8583861e858d0bd13458feaff2c1224
- SHA256
  
  029fd89580879f7bd871d8b6e9ca3346f30822eb47fde56e422c46c7cfa9848e
- SHA512
  
  5578d68242fa5079e87bb6951d6523953ca1ade4578f4d6aef1ade05c2a1676c832579047a2c1ea7cc6b0a0a1a61991dc5bf48b362e388f1d3f4f00cb915d51e
- SSDEEP
  
  3072:0WRji7yss5/SA4WqoB8n1LjylDqyij2c8NQeHp+3wzpUv/Gmsr:0OJssVd4f1ylLAXeJZ9Uv/G/r
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2