dc14091dd283ea5503280f9378c2abd570f658b08b97a901586b9d1f268f493d | Triage

Sharing

General

Target

00a070f995feeb6cef385e2795d3d267_JaffaCakes118
Size

1.1MB
Sample

240930-lhm2wssdnb
MD5

00a070f995feeb6cef385e2795d3d267
SHA1

392beb989ceaeaf87f163c50348689f9c3f228cb
SHA256

dc14091dd283ea5503280f9378c2abd570f658b08b97a901586b9d1f268f493d
SHA512

474f440a935509f1cc88990c5711f992b4473c217558d3352ef61da42210d0857d27265a08fc2ab290fbeecc9e9db89950148dc7d66978768e06fe3de7432627
SSDEEP

24576:hAkWrPamBGBL2Vp/Z9x6VFoas4+0U8hdHgyVo+F4CbdKy6vcr:hkZGBL27kwap+0U8hJE+FXd7lr

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  00a070f995feeb6cef385e2795d3d267_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  00a070f995feeb6cef385e2795d3d267
- SHA1
  
  392beb989ceaeaf87f163c50348689f9c3f228cb
- SHA256
  
  dc14091dd283ea5503280f9378c2abd570f658b08b97a901586b9d1f268f493d
- SHA512
  
  474f440a935509f1cc88990c5711f992b4473c217558d3352ef61da42210d0857d27265a08fc2ab290fbeecc9e9db89950148dc7d66978768e06fe3de7432627
- SSDEEP
  
  24576:hAkWrPamBGBL2Vp/Z9x6VFoas4+0U8hdHgyVo+F4CbdKy6vcr:hkZGBL27kwap+0U8hJE+FXd7lr
Score

7^/10

discovery persistence
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence