cb021622b0e01906ba77c53c8a564fea5a9774572bd9b885b66ff69fb95d29e4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ee851f4e1a564ec2fd2b4617421a9aab_JaffaCakes118
Size

268KB
Sample

240920-12zmcs1dlk
MD5

ee851f4e1a564ec2fd2b4617421a9aab
SHA1

0923c0d1e93da6179606ea39c06f97d1bd9c8c8c
SHA256

cb021622b0e01906ba77c53c8a564fea5a9774572bd9b885b66ff69fb95d29e4
SHA512

e39d84751057bbe8a18a0ba35ec94a80d3d52f13edfa78db3786d1f8411540dcfdfa0920d0bf6e6fabe18eac93d558e7dc6c9afc5d24c866e706d3edb47e100f
SSDEEP

3072:p3wjZn+28jUijAB4TkIOhZlSF8wl7r1Gxzb33BBvqO+f900SNwvI40LaCZg2K3tB:Nwp5Om4Wnc7RAS909NQ36VK3hMz04E

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  ee851f4e1a564ec2fd2b4617421a9aab_JaffaCakes118
- Size
  
  268KB
- MD5
  
  ee851f4e1a564ec2fd2b4617421a9aab
- SHA1
  
  0923c0d1e93da6179606ea39c06f97d1bd9c8c8c
- SHA256
  
  cb021622b0e01906ba77c53c8a564fea5a9774572bd9b885b66ff69fb95d29e4
- SHA512
  
  e39d84751057bbe8a18a0ba35ec94a80d3d52f13edfa78db3786d1f8411540dcfdfa0920d0bf6e6fabe18eac93d558e7dc6c9afc5d24c866e706d3edb47e100f
- SSDEEP
  
  3072:p3wjZn+28jUijAB4TkIOhZlSF8wl7r1Gxzb33BBvqO+f900SNwvI40LaCZg2K3tB:Nwp5Om4Wnc7RAS909NQ36VK3hMz04E
Score

8^/10

discovery persistence
- Drops file in Drivers directory
- Sets service image path in registry
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2