bcccf6ee669fcad31db189f1360240e5afdb811336469b195b5e3a0c8fbeec7c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4171b4219d5315bc7d51a7f062d5d6da_JaffaCakes118
Size

55KB
Sample

241013-xaeakawdrp
MD5

4171b4219d5315bc7d51a7f062d5d6da
SHA1

0184a4a2d029142b93f5a8f0141fbc0f8bc58e57
SHA256

bcccf6ee669fcad31db189f1360240e5afdb811336469b195b5e3a0c8fbeec7c
SHA512

bb338b11ca0b438c23245d36bb0aaa38f1115c1de6961d72f7e8bfa0a57d8326afcf487e82ceccd492ec2f0a02bf06607dd6468ff5f9eb79f2d52af46b675e1a
SSDEEP

768:qSWvB/JDliZTzdg2fQD8OyydtCMxTFRjsRL7tcJ6CQZ7kOqLbxVUCts4Z6csWO:DQJDMZTOHtdYM3Rjsd7WP27pqbtsDcq

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  4171b4219d5315bc7d51a7f062d5d6da_JaffaCakes118
- Size
  
  55KB
- MD5
  
  4171b4219d5315bc7d51a7f062d5d6da
- SHA1
  
  0184a4a2d029142b93f5a8f0141fbc0f8bc58e57
- SHA256
  
  bcccf6ee669fcad31db189f1360240e5afdb811336469b195b5e3a0c8fbeec7c
- SHA512
  
  bb338b11ca0b438c23245d36bb0aaa38f1115c1de6961d72f7e8bfa0a57d8326afcf487e82ceccd492ec2f0a02bf06607dd6468ff5f9eb79f2d52af46b675e1a
- SSDEEP
  
  768:qSWvB/JDliZTzdg2fQD8OyydtCMxTFRjsRL7tcJ6CQZ7kOqLbxVUCts4Z6csWO:DQJDMZTOHtdYM3Rjsd7WP27pqbtsDcq
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence