06280d2a67fea59eb60a1d078dfb9cd9627cb1fc5858bb9746b2d2db55d39de2 | Triage

Sharing

General

Target

026b4003322e01ea537fe6058165ee88_JaffaCakes118
Size

24KB
Sample

240930-vq1gmazhja
MD5

026b4003322e01ea537fe6058165ee88
SHA1

f8619375e9ce78dc8e4367a7363b5224d2f8c538
SHA256

06280d2a67fea59eb60a1d078dfb9cd9627cb1fc5858bb9746b2d2db55d39de2
SHA512

8504c3d2c26dda74a154fdc46d1ae781491869ebdb9de7e60858add5a87c4ada63e16d316564f9488f26b515437a931eee3a939b293332556751972d653a0c25
SSDEEP

384:vh2UxyJddEC9yBe1mOCW785Lddh0DbFo3uzNQxWNliWO2M2ki2KT0R:p2/yB4mOCW7mLdfmo3qQxsXki2KT0R

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  026b4003322e01ea537fe6058165ee88_JaffaCakes118
- Size
  
  24KB
- MD5
  
  026b4003322e01ea537fe6058165ee88
- SHA1
  
  f8619375e9ce78dc8e4367a7363b5224d2f8c538
- SHA256
  
  06280d2a67fea59eb60a1d078dfb9cd9627cb1fc5858bb9746b2d2db55d39de2
- SHA512
  
  8504c3d2c26dda74a154fdc46d1ae781491869ebdb9de7e60858add5a87c4ada63e16d316564f9488f26b515437a931eee3a939b293332556751972d653a0c25
- SSDEEP
  
  384:vh2UxyJddEC9yBe1mOCW785Lddh0DbFo3uzNQxWNliWO2M2ki2KT0R:p2/yB4mOCW7mLdfmo3qQxsXki2KT0R
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence