01ceb67aec25251266e8c8b9fe29ff42c60b6650e1f40ba4e51700a6441a3342 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e07b5441c9acd9b89ab89a57b50109be_JaffaCakes118
Size

1.0MB
Sample

240914-sysqms1hka
MD5

e07b5441c9acd9b89ab89a57b50109be
SHA1

b5c8d2f88394dcd1cae980c19ba2c57cbf6e5168
SHA256

01ceb67aec25251266e8c8b9fe29ff42c60b6650e1f40ba4e51700a6441a3342
SHA512

460833a6cd24ee06ec98873ef54977ee64df73407823dc009b685ade9c8c68d4af72176882578ed03a463f7d8de4eef851751c911fc172d3e26170b15f05ef47
SSDEEP

24576:Jxo8nGgVjDXdVy8/c7gxC2IvxOPxFQmXtKk:JmuGg1XfHUgp1P4mdKk

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  e07b5441c9acd9b89ab89a57b50109be_JaffaCakes118
- Size
  
  1.0MB
- MD5
  
  e07b5441c9acd9b89ab89a57b50109be
- SHA1
  
  b5c8d2f88394dcd1cae980c19ba2c57cbf6e5168
- SHA256
  
  01ceb67aec25251266e8c8b9fe29ff42c60b6650e1f40ba4e51700a6441a3342
- SHA512
  
  460833a6cd24ee06ec98873ef54977ee64df73407823dc009b685ade9c8c68d4af72176882578ed03a463f7d8de4eef851751c911fc172d3e26170b15f05ef47
- SSDEEP
  
  24576:Jxo8nGgVjDXdVy8/c7gxC2IvxOPxFQmXtKk:JmuGg1XfHUgp1P4mdKk
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence