17c861a69153317378cc0da4bad64ea495eac616b50c6f58ff3b8f98865ab36c | Triage

Sharing

General

Target

eacd4dde0ecb904e8148c6cee94e2d73_JaffaCakes118
Size

1.3MB
Sample

240919-hqm53swerl
MD5

eacd4dde0ecb904e8148c6cee94e2d73
SHA1

e9c06a29a67d51729a297f7ab88431c50bf2f142
SHA256

17c861a69153317378cc0da4bad64ea495eac616b50c6f58ff3b8f98865ab36c
SHA512

fad91aa1d8c6d3a916abc893e751bfe2fccea02588cdd5ca8bd2e7e1af3a0fbe615e533493b02b81d8d3feaa6e2a1a8d98d5d6ce78ac1bcbb698fffae96a1466
SSDEEP

24576:ChsMuyoya8M0vIMkfaDteQFPO/YtcIuogBmZ5Hj95wcoo1F8fwbJmA2JG9pvgd7x:ChsuMn/fUDWA7uov+4H8fwFmAKG9iTVJ

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  eacd4dde0ecb904e8148c6cee94e2d73_JaffaCakes118
- Size
  
  1.3MB
- MD5
  
  eacd4dde0ecb904e8148c6cee94e2d73
- SHA1
  
  e9c06a29a67d51729a297f7ab88431c50bf2f142
- SHA256
  
  17c861a69153317378cc0da4bad64ea495eac616b50c6f58ff3b8f98865ab36c
- SHA512
  
  fad91aa1d8c6d3a916abc893e751bfe2fccea02588cdd5ca8bd2e7e1af3a0fbe615e533493b02b81d8d3feaa6e2a1a8d98d5d6ce78ac1bcbb698fffae96a1466
- SSDEEP
  
  24576:ChsMuyoya8M0vIMkfaDteQFPO/YtcIuogBmZ5Hj95wcoo1F8fwbJmA2JG9pvgd7x:ChsuMn/fUDWA7uov+4H8fwFmAKG9iTVJ
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence