af92923de76a01e2a2c56696bb1462fd4619bca12d8749725f8ae35315e144fd | Triage

Sharing

General

Target

f00438c060616c2255f95dcbfd983d0b_JaffaCakes118
Size

112KB
Sample

240921-r228taxglr
MD5

f00438c060616c2255f95dcbfd983d0b
SHA1

8a8ff162ed055872593fa9ad311e3fde8461374a
SHA256

af92923de76a01e2a2c56696bb1462fd4619bca12d8749725f8ae35315e144fd
SHA512

a4b2f42beb7bf540a873ef0548d772e5450db06b2ec72330421c12a43b33bd11ed3b47fe868cee7bd07383a78ff01fe72a0806e2e47db39a0c08df696b162ab3
SSDEEP

1536:TqRuhXx2plzGRondkyeGpZcUk+BSxLdl4dmikuDVCGYnHInbSTuVappCt:TxXa0kdnRpZcqAtdlqgAYnH22//

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  f00438c060616c2255f95dcbfd983d0b_JaffaCakes118
- Size
  
  112KB
- MD5
  
  f00438c060616c2255f95dcbfd983d0b
- SHA1
  
  8a8ff162ed055872593fa9ad311e3fde8461374a
- SHA256
  
  af92923de76a01e2a2c56696bb1462fd4619bca12d8749725f8ae35315e144fd
- SHA512
  
  a4b2f42beb7bf540a873ef0548d772e5450db06b2ec72330421c12a43b33bd11ed3b47fe868cee7bd07383a78ff01fe72a0806e2e47db39a0c08df696b162ab3
- SSDEEP
  
  1536:TqRuhXx2plzGRondkyeGpZcUk+BSxLdl4dmikuDVCGYnHInbSTuVappCt:TxXa0kdnRpZcqAtdlqgAYnH22//
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence