dffade984d2bd276c81e244cba84bca1c5d4467ea1c6759a7d355599c2dd1c35 | Triage

Sharing

General

Target

450b69716756cf926c1319356bf474e6_JaffaCakes118
Size

15KB
Sample

241015-bb5cgsvhkb
MD5

450b69716756cf926c1319356bf474e6
SHA1

f0773962b0dd2f0318016a3a24fe8221d45c51a6
SHA256

dffade984d2bd276c81e244cba84bca1c5d4467ea1c6759a7d355599c2dd1c35
SHA512

f2f3533cffe4bce0e787fec98adb7a9d3fffb7f2005827efee42ee62322697fb81bb3045ef3c67dea78b2a6880df294ad0ac64828844c02b2b3773fec1b2f1d6
SSDEEP

384:zulols2dn/Q3V6NHkGRSiTf8bDy+xbYPmDru6uNJE:zuebd/QaRSksy+x9rulW

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  450b69716756cf926c1319356bf474e6_JaffaCakes118
- Size
  
  15KB
- MD5
  
  450b69716756cf926c1319356bf474e6
- SHA1
  
  f0773962b0dd2f0318016a3a24fe8221d45c51a6
- SHA256
  
  dffade984d2bd276c81e244cba84bca1c5d4467ea1c6759a7d355599c2dd1c35
- SHA512
  
  f2f3533cffe4bce0e787fec98adb7a9d3fffb7f2005827efee42ee62322697fb81bb3045ef3c67dea78b2a6880df294ad0ac64828844c02b2b3773fec1b2f1d6
- SSDEEP
  
  384:zulols2dn/Q3V6NHkGRSiTf8bDy+xbYPmDru6uNJE:zuebd/QaRSksy+x9rulW
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2