1ab5b728ec4a657ec727398f513787aeec329ccd9ef7d3143b0b95f0f547b657 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

007041afa7ef321e9a04aac13132cad8_JaffaCakes118
Size

1.1MB
Sample

240930-kmy5aawbkl
MD5

007041afa7ef321e9a04aac13132cad8
SHA1

d92c4a6f42efa7fab46b62bc91d0e6662586f459
SHA256

1ab5b728ec4a657ec727398f513787aeec329ccd9ef7d3143b0b95f0f547b657
SHA512

8fd2a28b6a6c45bfd9e2d7abe995942c8105ed0cadb820c2e8c576e590c9f46eeea07ffab082ea16969cbe5ef29ef63a35bc04b79337eace6dabd718cf03a4c3
SSDEEP

24576:dyU3AjRtEkJ1EzHx+z7wysE8ksIiJqSGYYWFY0of4ID71Kf:w/J2zRywS9i0CFY0oAGG

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  007041afa7ef321e9a04aac13132cad8_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  007041afa7ef321e9a04aac13132cad8
- SHA1
  
  d92c4a6f42efa7fab46b62bc91d0e6662586f459
- SHA256
  
  1ab5b728ec4a657ec727398f513787aeec329ccd9ef7d3143b0b95f0f547b657
- SHA512
  
  8fd2a28b6a6c45bfd9e2d7abe995942c8105ed0cadb820c2e8c576e590c9f46eeea07ffab082ea16969cbe5ef29ef63a35bc04b79337eace6dabd718cf03a4c3
- SSDEEP
  
  24576:dyU3AjRtEkJ1EzHx+z7wysE8ksIiJqSGYYWFY0of4ID71Kf:w/J2zRywS9i0CFY0oAGG
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence