b73de01c62cfaf123e0f5624be59f1c37688b8f1a4c44e52507ff5315c31ccb7 | Triage

Sharing

General

Target

0336684317fb15caee9570b08e0ea5e4_JaffaCakes118
Size

230KB
Sample

240930-zlzrraycrd
MD5

0336684317fb15caee9570b08e0ea5e4
SHA1

194576eee4ccd732364e062b6d0634ae85b03110
SHA256

b73de01c62cfaf123e0f5624be59f1c37688b8f1a4c44e52507ff5315c31ccb7
SHA512

95c9d9c7ed131a3468413a49e5e7117f5719efbd0283519b4f0ba5b8aca84f2c51947d448712376ac113d262ccb211ef2e9c427d4e097c77f46a56dfd56a08dc
SSDEEP

1536:QiaVnouSu4CU7XZfjPcj/NMC2PhBRX99m+g9Vxm5dZZpQCLWGUGowkTEI/p:VioFCUrJcj/uC2b9+x0Jq8uwkQIR

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  0336684317fb15caee9570b08e0ea5e4_JaffaCakes118
- Size
  
  230KB
- MD5
  
  0336684317fb15caee9570b08e0ea5e4
- SHA1
  
  194576eee4ccd732364e062b6d0634ae85b03110
- SHA256
  
  b73de01c62cfaf123e0f5624be59f1c37688b8f1a4c44e52507ff5315c31ccb7
- SHA512
  
  95c9d9c7ed131a3468413a49e5e7117f5719efbd0283519b4f0ba5b8aca84f2c51947d448712376ac113d262ccb211ef2e9c427d4e097c77f46a56dfd56a08dc
- SSDEEP
  
  1536:QiaVnouSu4CU7XZfjPcj/NMC2PhBRX99m+g9Vxm5dZZpQCLWGUGowkTEI/p:VioFCUrJcj/uC2b9+x0Jq8uwkQIR
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence