b04e6cd51d3d2ae977d31988b9a0b79f0a43f6186c179eab8a6950b4c919a506 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

094a95e9b6a43fa6c4ad93e780f52418_JaffaCakes118
Size

74KB
Sample

241002-g4b5as1eqp
MD5

094a95e9b6a43fa6c4ad93e780f52418
SHA1

5c5d257a6b6930592f296229941e1c38d164b724
SHA256

b04e6cd51d3d2ae977d31988b9a0b79f0a43f6186c179eab8a6950b4c919a506
SHA512

06b4e46681390d10338697ce4930e46bff1e8b568cbef53c1e1c20299c1e409e1b7f904f4e7fb0939f30dbbf49c101e5c899072c30928cec6ff3243f4a8afd76
SSDEEP

1536:A87rh9nDkYTflvGjdo1bp/7i0wdc4jjW/UB15j:B7tZkYTJejcqq/UB15j

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  094a95e9b6a43fa6c4ad93e780f52418_JaffaCakes118
- Size
  
  74KB
- MD5
  
  094a95e9b6a43fa6c4ad93e780f52418
- SHA1
  
  5c5d257a6b6930592f296229941e1c38d164b724
- SHA256
  
  b04e6cd51d3d2ae977d31988b9a0b79f0a43f6186c179eab8a6950b4c919a506
- SHA512
  
  06b4e46681390d10338697ce4930e46bff1e8b568cbef53c1e1c20299c1e409e1b7f904f4e7fb0939f30dbbf49c101e5c899072c30928cec6ff3243f4a8afd76
- SSDEEP
  
  1536:A87rh9nDkYTflvGjdo1bp/7i0wdc4jjW/UB15j:B7tZkYTJejcqq/UB15j
Score

8^/10

discovery persistence
- Adds policy Run key to start application
  persistence
- Drops file in Drivers directory
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence