441de39566a8f90e3663a744116700a11d4153920db7ae5bc034d612771879ab | Triage

Sharing

General

Target

fbeeaafd852428a1c90f25887acbb171_JaffaCakes118
Size

27KB
Sample

240928-ksanwazbjb
MD5

fbeeaafd852428a1c90f25887acbb171
SHA1

f1ea96988ebc469e60ff285a09e71f9a2cf1aa85
SHA256

441de39566a8f90e3663a744116700a11d4153920db7ae5bc034d612771879ab
SHA512

021461ea16a3512ef150ea67c7b4af2ab62cac591667d18cb9e897f21331f8e48a50051201ca2bcf4a15f30a21b0cae58b349db587c55510c4fea3a37364b3cf
SSDEEP

768:aWVVIaX0/VxUwNZ9ZOJzeZWrCQWAYBWGzz9t:1VBQxvrUJy0rCtBWYBt

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  fbeeaafd852428a1c90f25887acbb171_JaffaCakes118
- Size
  
  27KB
- MD5
  
  fbeeaafd852428a1c90f25887acbb171
- SHA1
  
  f1ea96988ebc469e60ff285a09e71f9a2cf1aa85
- SHA256
  
  441de39566a8f90e3663a744116700a11d4153920db7ae5bc034d612771879ab
- SHA512
  
  021461ea16a3512ef150ea67c7b4af2ab62cac591667d18cb9e897f21331f8e48a50051201ca2bcf4a15f30a21b0cae58b349db587c55510c4fea3a37364b3cf
- SSDEEP
  
  768:aWVVIaX0/VxUwNZ9ZOJzeZWrCQWAYBWGzz9t:1VBQxvrUJy0rCtBWYBt
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence