d944a7e29de2b6610726205693242fae722a92c8fc0aceb8bd6ff5b9ced86166 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02e332b2435436ba05e2491892c15afc_JaffaCakes118
Size

55KB
Sample

240930-xyz7yavelb
MD5

02e332b2435436ba05e2491892c15afc
SHA1

5e6942a6fc7aaf14c0534fb2d390f58c24bf8d12
SHA256

d944a7e29de2b6610726205693242fae722a92c8fc0aceb8bd6ff5b9ced86166
SHA512

9c1d6ecd95923e93c0dcb7d964c649229498fad8a50f2032f1aa448b4e5e80fdc4988a13ab3c59aebf7206db98a6f0c586e79e92fee73746a7f04d8317380d90
SSDEEP

768:EIJZH/lpScECr32hMc3cQVD2xqPJwPA3ys+JUImp9URfqMJDLOVVk4RnzKW8C:EIJplD/323l1JwY3ys+KIA+DG7zKW8C

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  02e332b2435436ba05e2491892c15afc_JaffaCakes118
- Size
  
  55KB
- MD5
  
  02e332b2435436ba05e2491892c15afc
- SHA1
  
  5e6942a6fc7aaf14c0534fb2d390f58c24bf8d12
- SHA256
  
  d944a7e29de2b6610726205693242fae722a92c8fc0aceb8bd6ff5b9ced86166
- SHA512
  
  9c1d6ecd95923e93c0dcb7d964c649229498fad8a50f2032f1aa448b4e5e80fdc4988a13ab3c59aebf7206db98a6f0c586e79e92fee73746a7f04d8317380d90
- SSDEEP
  
  768:EIJZH/lpScECr32hMc3cQVD2xqPJwPA3ys+JUImp9URfqMJDLOVVk4RnzKW8C:EIJplD/323l1JwY3ys+KIA+DG7zKW8C
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence