c4850f34d227de2b60958f6317fb6d0d5ea1114670ca0f310d4bda6c25fa3bb0 | Triage

Sharing

General

Target

003a64680130852de73c74da132629f6_JaffaCakes118
Size

100KB
Sample

240930-jl2y4syake
MD5

003a64680130852de73c74da132629f6
SHA1

b68feee91d53570ac5eb526e08e264b4891e69fb
SHA256

c4850f34d227de2b60958f6317fb6d0d5ea1114670ca0f310d4bda6c25fa3bb0
SHA512

20c9d5a8cf6a4ac719b21eefaea427357b7fb3398859a73e12c8218ef7e2f4f64d333919885666e7257ecd0fd6549999e357927b77e0ce0bdc1f675c67d44a6c
SSDEEP

1536:ITbO//QDkgsqj8T4RkDiKOa9RXEFHYRpGnCUrl5:IvsGpB8UShrEFHwQ

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  003a64680130852de73c74da132629f6_JaffaCakes118
- Size
  
  100KB
- MD5
  
  003a64680130852de73c74da132629f6
- SHA1
  
  b68feee91d53570ac5eb526e08e264b4891e69fb
- SHA256
  
  c4850f34d227de2b60958f6317fb6d0d5ea1114670ca0f310d4bda6c25fa3bb0
- SHA512
  
  20c9d5a8cf6a4ac719b21eefaea427357b7fb3398859a73e12c8218ef7e2f4f64d333919885666e7257ecd0fd6549999e357927b77e0ce0bdc1f675c67d44a6c
- SSDEEP
  
  1536:ITbO//QDkgsqj8T4RkDiKOa9RXEFHYRpGnCUrl5:IvsGpB8UShrEFHwQ
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence