996ab30840118f828b2b70af506583038f0dbfe3f39447bffd81770dd0486773 | Triage

Sharing

General

Target

ffc89bf1faa475ba594b8e590fe522a6_JaffaCakes118
Size

247KB
Sample

240930-c33hmsxhkc
MD5

ffc89bf1faa475ba594b8e590fe522a6
SHA1

bb945487dbd9a68b2eee02c3e03ef03daf71377c
SHA256

996ab30840118f828b2b70af506583038f0dbfe3f39447bffd81770dd0486773
SHA512

3049f6675e827afb8b8405028c505d14ce47790854d7ad8d4b7bffc113cbefb9f6df35e30d6080d38445657dbebd55b2663bc984992ffab269ea03982e1f2f8a
SSDEEP

6144:8Ilu/ZCrNQRm3qK88Rb6aQezoJcG1SNghq0EHP0bJbCK9/aW:8Ilu/ZANQ+qYx6aAJc5wysbkK9iW

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  ffc89bf1faa475ba594b8e590fe522a6_JaffaCakes118
- Size
  
  247KB
- MD5
  
  ffc89bf1faa475ba594b8e590fe522a6
- SHA1
  
  bb945487dbd9a68b2eee02c3e03ef03daf71377c
- SHA256
  
  996ab30840118f828b2b70af506583038f0dbfe3f39447bffd81770dd0486773
- SHA512
  
  3049f6675e827afb8b8405028c505d14ce47790854d7ad8d4b7bffc113cbefb9f6df35e30d6080d38445657dbebd55b2663bc984992ffab269ea03982e1f2f8a
- SSDEEP
  
  6144:8Ilu/ZCrNQRm3qK88Rb6aQezoJcG1SNghq0EHP0bJbCK9/aW:8Ilu/ZANQ+qYx6aAJc5wysbkK9iW
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence