bea632713f5318c3a86432f96abcc3bc70e953fb725248bee4ec024dca950244 | Triage

Sharing

General

Target

eac3e9d2d6bf8ad65528509200701c3a_JaffaCakes118
Size

1.1MB
Sample

240919-hapnzavhmm
MD5

eac3e9d2d6bf8ad65528509200701c3a
SHA1

999d6d9d569be9bc9cada17bdaa975ebef4120bd
SHA256

bea632713f5318c3a86432f96abcc3bc70e953fb725248bee4ec024dca950244
SHA512

37f3007718bd132d195cd84f533169c3d926e8c7e4268587168fcd143dab5f64f13d3efdabd7e19e5a9c7056b1113995dec00bb0e233cd4292b897407b94e760
SSDEEP

24576:fuMbGPG2ap+7r2rqDGnYMrYdHFp2mAqw48oRK:2MyPGrp+vVGYTFYXJ1b

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  eac3e9d2d6bf8ad65528509200701c3a_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  eac3e9d2d6bf8ad65528509200701c3a
- SHA1
  
  999d6d9d569be9bc9cada17bdaa975ebef4120bd
- SHA256
  
  bea632713f5318c3a86432f96abcc3bc70e953fb725248bee4ec024dca950244
- SHA512
  
  37f3007718bd132d195cd84f533169c3d926e8c7e4268587168fcd143dab5f64f13d3efdabd7e19e5a9c7056b1113995dec00bb0e233cd4292b897407b94e760
- SSDEEP
  
  24576:fuMbGPG2ap+7r2rqDGnYMrYdHFp2mAqw48oRK:2MyPGrp+vVGYTFYXJ1b
Score

7^/10

discovery persistence
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence