e1e45280a1f1aca8343fb7b082edba6455d0feba310258b5e9b3a668064634fd | Triage

Sharing

General

Target

02c5d9f832197acb4857ed4c8b2db48a_JaffaCakes118
Size

990KB
Sample

240930-xdvfystfkd
MD5

02c5d9f832197acb4857ed4c8b2db48a
SHA1

d02f54d9c4b768a1683f311223d09cf354f626a4
SHA256

e1e45280a1f1aca8343fb7b082edba6455d0feba310258b5e9b3a668064634fd
SHA512

914d44619d8f7bed325ede2a51543b8cfb86fb1ad85d967385d33642d8f2e1dac7a3aca3e328faef30e9fae714db1a5153eb15f9ecdc350acb1060a0b58b763a
SSDEEP

24576:cyeB1KBS2bgtQxcZANMfNX2syMdisRbp45:cy5SsNGu2l/T

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  02c5d9f832197acb4857ed4c8b2db48a_JaffaCakes118
- Size
  
  990KB
- MD5
  
  02c5d9f832197acb4857ed4c8b2db48a
- SHA1
  
  d02f54d9c4b768a1683f311223d09cf354f626a4
- SHA256
  
  e1e45280a1f1aca8343fb7b082edba6455d0feba310258b5e9b3a668064634fd
- SHA512
  
  914d44619d8f7bed325ede2a51543b8cfb86fb1ad85d967385d33642d8f2e1dac7a3aca3e328faef30e9fae714db1a5153eb15f9ecdc350acb1060a0b58b763a
- SSDEEP
  
  24576:cyeB1KBS2bgtQxcZANMfNX2syMdisRbp45:cy5SsNGu2l/T
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence