09a03be09324917429600641b1c74bf020cd5750a27b6a316c4630070d333a86 | Triage

Sharing

General

Target

311861096169d4be51af99c9d155abdb_JaffaCakes118
Size

237KB
Sample

241010-v3klyatakm
MD5

311861096169d4be51af99c9d155abdb
SHA1

9a6fad16df5eb1e4b15bdc38be93fc90e33e6ac3
SHA256

09a03be09324917429600641b1c74bf020cd5750a27b6a316c4630070d333a86
SHA512

41c86c13d9104d1820340ca366e832db15e4d74bf81fdc233caea9240f17963a8b6ad172231853c68df1ddd2b3f02f4e12b34b86a0cc4a5b91b70e757a972f00
SSDEEP

1536:N74rbZN1OzAJe8heDDrM8PoBGQy3kltahqHkHR97CmganWj5fKmtjG8G/wk71:2rbZN1Oz52cfOGQVaHx97/W1fKmywk5

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  311861096169d4be51af99c9d155abdb_JaffaCakes118
- Size
  
  237KB
- MD5
  
  311861096169d4be51af99c9d155abdb
- SHA1
  
  9a6fad16df5eb1e4b15bdc38be93fc90e33e6ac3
- SHA256
  
  09a03be09324917429600641b1c74bf020cd5750a27b6a316c4630070d333a86
- SHA512
  
  41c86c13d9104d1820340ca366e832db15e4d74bf81fdc233caea9240f17963a8b6ad172231853c68df1ddd2b3f02f4e12b34b86a0cc4a5b91b70e757a972f00
- SSDEEP
  
  1536:N74rbZN1OzAJe8heDDrM8PoBGQy3kltahqHkHR97CmganWj5fKmtjG8G/wk71:2rbZN1Oz52cfOGQVaHx97/W1fKmywk5
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence