123c0d39e6a732f7b246cd94cec4565c2a34e76a7917bdbf68d8f317b6ba9c08 | Triage

Sharing

General

Target

130b2a328ba9663c609e45ed044a8dfa_JaffaCakes118
Size

279KB
Sample

241004-my9fhathjc
MD5

130b2a328ba9663c609e45ed044a8dfa
SHA1

fb3ec983e25124886e4cb39e9967ded7ee05e9c1
SHA256

123c0d39e6a732f7b246cd94cec4565c2a34e76a7917bdbf68d8f317b6ba9c08
SHA512

50fbaaca04929fb5af523fd42e96c3566ba84ee68eb09aeb416966a2c1245a5b8270fba2f128ef115912a38d208a498bb67cdafddcba25c13c494329f58ef19e
SSDEEP

6144:Ynk+HdSTP5yiGPLbNAZF3ro4a14BBBcpi7J61ks2a:Ynk+9cxyTPfNC3kr14BBj1mRr

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  130b2a328ba9663c609e45ed044a8dfa_JaffaCakes118
- Size
  
  279KB
- MD5
  
  130b2a328ba9663c609e45ed044a8dfa
- SHA1
  
  fb3ec983e25124886e4cb39e9967ded7ee05e9c1
- SHA256
  
  123c0d39e6a732f7b246cd94cec4565c2a34e76a7917bdbf68d8f317b6ba9c08
- SHA512
  
  50fbaaca04929fb5af523fd42e96c3566ba84ee68eb09aeb416966a2c1245a5b8270fba2f128ef115912a38d208a498bb67cdafddcba25c13c494329f58ef19e
- SSDEEP
  
  6144:Ynk+HdSTP5yiGPLbNAZF3ro4a14BBBcpi7J61ks2a:Ynk+9cxyTPfNC3kr14BBj1mRr
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence