3dab3a1cf99bfabf952295684b1148701a90a134dd88d5f71eb179b7b6514f0d | Triage

Sharing

General

Target

eacc1ad8464c53860939399c03a1cae2_JaffaCakes118
Size

18KB
Sample

240919-hntvvawckc
MD5

eacc1ad8464c53860939399c03a1cae2
SHA1

772d7f51288067c28a0a5283f59f5d411b5a9f48
SHA256

3dab3a1cf99bfabf952295684b1148701a90a134dd88d5f71eb179b7b6514f0d
SHA512

67c7fa6610114f9db6e114ff5b07edc0b709b20fc29b184c6e5c9af95cabfdf156422e3d59976be14c5a6e52e4f2dfed2ca14c7992c6b398e932d0ccfc3867bd
SSDEEP

384:S4+O/EG+FuubS1KPibba0ojo2uLRSANmQsUe77f70kpMzurl/xMcVAQnjB:+OFrubS1KKbba0ojgLYANmqk8ur1VnN

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  eacc1ad8464c53860939399c03a1cae2_JaffaCakes118
- Size
  
  18KB
- MD5
  
  eacc1ad8464c53860939399c03a1cae2
- SHA1
  
  772d7f51288067c28a0a5283f59f5d411b5a9f48
- SHA256
  
  3dab3a1cf99bfabf952295684b1148701a90a134dd88d5f71eb179b7b6514f0d
- SHA512
  
  67c7fa6610114f9db6e114ff5b07edc0b709b20fc29b184c6e5c9af95cabfdf156422e3d59976be14c5a6e52e4f2dfed2ca14c7992c6b398e932d0ccfc3867bd
- SSDEEP
  
  384:S4+O/EG+FuubS1KPibba0ojo2uLRSANmQsUe77f70kpMzurl/xMcVAQnjB:+OFrubS1KKbba0ojgLYANmqk8ur1VnN
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2