b0587a32d48a88a467bbd66b48ab8683ad99c1b9201af34f2fe6b47d63e4ee09 | Triage

Sharing

General

Target

371bc4041a894928a13a5f6805e597a3_JaffaCakes118
Size

186KB
Sample

241011-2byg2sxdka
MD5

371bc4041a894928a13a5f6805e597a3
SHA1

93650fda0dd7ce41ad26d4ce885bd65aada7a9e2
SHA256

b0587a32d48a88a467bbd66b48ab8683ad99c1b9201af34f2fe6b47d63e4ee09
SHA512

062c59b0df112c932237d79137a5f6dc0bae553dc38b8fdddb52a1fd3f26f8f6153ea963d9271aeb4800777148a86da86f6f4248e1658548a33e49768a5a08ce
SSDEEP

3072:9nj9mtfUpINndIc0JH/rcuV5M2kuFTZBh5pa63pbkabmKGecqTGRrumE:9jDeindrTZXTvtbmKGcGRrVE

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  371bc4041a894928a13a5f6805e597a3_JaffaCakes118
- Size
  
  186KB
- MD5
  
  371bc4041a894928a13a5f6805e597a3
- SHA1
  
  93650fda0dd7ce41ad26d4ce885bd65aada7a9e2
- SHA256
  
  b0587a32d48a88a467bbd66b48ab8683ad99c1b9201af34f2fe6b47d63e4ee09
- SHA512
  
  062c59b0df112c932237d79137a5f6dc0bae553dc38b8fdddb52a1fd3f26f8f6153ea963d9271aeb4800777148a86da86f6f4248e1658548a33e49768a5a08ce
- SSDEEP
  
  3072:9nj9mtfUpINndIc0JH/rcuV5M2kuFTZBh5pa63pbkabmKGecqTGRrumE:9jDeindrTZXTvtbmKGcGRrVE
Score

7^/10

discovery persistence
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence