9570a03522614619744b21ef8cbc40a95dd2fde5ea7775a4f48a973a7bdde197 | Triage

Sharing

General

Target

08f3373e38ff8f642101ca2f94b996e3_JaffaCakes118
Size

357KB
Sample

241002-fdjk1s1gle
MD5

08f3373e38ff8f642101ca2f94b996e3
SHA1

47e0d0a2a9c7529dcf70e569808957733659f1be
SHA256

9570a03522614619744b21ef8cbc40a95dd2fde5ea7775a4f48a973a7bdde197
SHA512

67c5798fe678a7789b0a6eace2db6574f181f9eff81f7d37bc6f5e13648ee329f269b9752707f776907a1ffcdedca4fe26d45d34c6687b5da19822137fa6cb37
SSDEEP

6144:yjckxhGotqbSg9RsLvnQAFyhIOKFEjhLzNUTavglyrGtpk2oIPLtpLogTgrTMGdz:GxgJ79RCQRI7Edea2YepqIPLtpLTgrTd

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  08f3373e38ff8f642101ca2f94b996e3_JaffaCakes118
- Size
  
  357KB
- MD5
  
  08f3373e38ff8f642101ca2f94b996e3
- SHA1
  
  47e0d0a2a9c7529dcf70e569808957733659f1be
- SHA256
  
  9570a03522614619744b21ef8cbc40a95dd2fde5ea7775a4f48a973a7bdde197
- SHA512
  
  67c5798fe678a7789b0a6eace2db6574f181f9eff81f7d37bc6f5e13648ee329f269b9752707f776907a1ffcdedca4fe26d45d34c6687b5da19822137fa6cb37
- SSDEEP
  
  6144:yjckxhGotqbSg9RsLvnQAFyhIOKFEjhLzNUTavglyrGtpk2oIPLtpLogTgrTMGdz:GxgJ79RCQRI7Edea2YepqIPLtpLTgrTd
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2