General
-
Target
0fe8191ec7600142946111b82df947a4_JaffaCakes118
-
Size
176KB
-
Sample
241003-v9xj3s1gne
-
MD5
0fe8191ec7600142946111b82df947a4
-
SHA1
42932da45f36a3d476ea7b2c9e273fc860997cb0
-
SHA256
1e4a1ba6e6daa55bd5a0503a0f4acc1aa6471815d725348c178aa7f77eb06535
-
SHA512
33450e57614f2982b6a7554de3e93a01059b38b30f6e10b472ef5ce3b514e7cca1152e8aeeedac0cb87dc034fc2e35ed10678f6617fec6ee9b8e54e42fed0155
-
SSDEEP
3072:nP1+b4ooAAA6c9RJoaZoV9456sT/NIzlLTBOTQUyZR6:nP8b4MhwaylLT
Malware Config
Targets
-
-
Target
0fe8191ec7600142946111b82df947a4_JaffaCakes118
-
Size
176KB
-
MD5
0fe8191ec7600142946111b82df947a4
-
SHA1
42932da45f36a3d476ea7b2c9e273fc860997cb0
-
SHA256
1e4a1ba6e6daa55bd5a0503a0f4acc1aa6471815d725348c178aa7f77eb06535
-
SHA512
33450e57614f2982b6a7554de3e93a01059b38b30f6e10b472ef5ce3b514e7cca1152e8aeeedac0cb87dc034fc2e35ed10678f6617fec6ee9b8e54e42fed0155
-
SSDEEP
3072:nP1+b4ooAAA6c9RJoaZoV9456sT/NIzlLTBOTQUyZR6:nP8b4MhwaylLT
Score8/10-
Drops file in Drivers directory
-
Event Triggered Execution: Image File Execution Options Injection
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Image File Execution Options Injection
1