2dd88c99fdb269ac0c7a7c03cc15ca32086b9f6dd7ac4853d789c67325047831 | Triage

Sharing

General

Target

eaa40a7858c57f7a425913f149abb3d9_JaffaCakes118
Size

28KB
Sample

240919-frzjdsscmg
MD5

eaa40a7858c57f7a425913f149abb3d9
SHA1

9252f4015428e5d73fc8ce89b704f8e9afdf8686
SHA256

2dd88c99fdb269ac0c7a7c03cc15ca32086b9f6dd7ac4853d789c67325047831
SHA512

f4da0a0d16dce79ad6d7bdbbb10447203f46b8114fa352d67727b87b01b178b5aad3f3d196990f52b235ce074f2ae5196b04e4d015145a914f3c7238856b6734
SSDEEP

768:lutAzyUyeO9+5nhOPFsYX4vUVCKgCsB6agm:lJmehOdsYX4+RKB

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  eaa40a7858c57f7a425913f149abb3d9_JaffaCakes118
- Size
  
  28KB
- MD5
  
  eaa40a7858c57f7a425913f149abb3d9
- SHA1
  
  9252f4015428e5d73fc8ce89b704f8e9afdf8686
- SHA256
  
  2dd88c99fdb269ac0c7a7c03cc15ca32086b9f6dd7ac4853d789c67325047831
- SHA512
  
  f4da0a0d16dce79ad6d7bdbbb10447203f46b8114fa352d67727b87b01b178b5aad3f3d196990f52b235ce074f2ae5196b04e4d015145a914f3c7238856b6734
- SSDEEP
  
  768:lutAzyUyeO9+5nhOPFsYX4vUVCKgCsB6agm:lJmehOdsYX4+RKB
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence