e1bf908afdef3207178361ef0d33f30a951203ccca49a68a5749e32dd2ed5398 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

110c3e456a17aeb5103a39116bbcba51_JaffaCakes118
Size

1.1MB
Sample

241004-aj9fqsxhkc
MD5

110c3e456a17aeb5103a39116bbcba51
SHA1

ac981e4fe01a842b063a9f42b8cdba5f9904c4fb
SHA256

e1bf908afdef3207178361ef0d33f30a951203ccca49a68a5749e32dd2ed5398
SHA512

8c293c9528d8b500f3b8948594817bf1b31d4891d3df9b664a625ed4c0710458611759e1db6aa882e1e36e333bad48886b4271fafdae67959e89113a2cff45b5
SSDEEP

24576:UUZX1nP8Itq06riruq7vZjX1GN5kpDTdndAfNG1w/0:PLEIYJirRlXULkpDISw/0

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  110c3e456a17aeb5103a39116bbcba51_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  110c3e456a17aeb5103a39116bbcba51
- SHA1
  
  ac981e4fe01a842b063a9f42b8cdba5f9904c4fb
- SHA256
  
  e1bf908afdef3207178361ef0d33f30a951203ccca49a68a5749e32dd2ed5398
- SHA512
  
  8c293c9528d8b500f3b8948594817bf1b31d4891d3df9b664a625ed4c0710458611759e1db6aa882e1e36e333bad48886b4271fafdae67959e89113a2cff45b5
- SSDEEP
  
  24576:UUZX1nP8Itq06riruq7vZjX1GN5kpDTdndAfNG1w/0:PLEIYJirRlXULkpDISw/0
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence