653df77f858b1657c16f14ffb57407bfecc8fbbb6d02ee3b1fb10ab381407ffb | Triage

Sharing

General

Target

ea954d3102bcbf4700b2ef55c43c5fbb_JaffaCakes118
Size

456KB
Sample

240919-e3f1ra1ekk
MD5

ea954d3102bcbf4700b2ef55c43c5fbb
SHA1

a337ee0cc67c4b507055f91e12002d5604af26a9
SHA256

653df77f858b1657c16f14ffb57407bfecc8fbbb6d02ee3b1fb10ab381407ffb
SHA512

caf3dbe8ebc484a44c041e8b7ed4a5ca65d6e154c3763ab45756d1ae3f86a85b758b08191e994f5262544cbfdf9459b1164681ffe8704a7c62e6869d163ffcd0
SSDEEP

3072:0Gu99lfzqIbXWm+w0Jvpc5BMpHNEkSTs3xcONzVUm0XWYGIp7Qggi:0/cuoFptEjsBci4B3

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  ea954d3102bcbf4700b2ef55c43c5fbb_JaffaCakes118
- Size
  
  456KB
- MD5
  
  ea954d3102bcbf4700b2ef55c43c5fbb
- SHA1
  
  a337ee0cc67c4b507055f91e12002d5604af26a9
- SHA256
  
  653df77f858b1657c16f14ffb57407bfecc8fbbb6d02ee3b1fb10ab381407ffb
- SHA512
  
  caf3dbe8ebc484a44c041e8b7ed4a5ca65d6e154c3763ab45756d1ae3f86a85b758b08191e994f5262544cbfdf9459b1164681ffe8704a7c62e6869d163ffcd0
- SSDEEP
  
  3072:0Gu99lfzqIbXWm+w0Jvpc5BMpHNEkSTs3xcONzVUm0XWYGIp7Qggi:0/cuoFptEjsBci4B3
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence