be110e097917d3533004447dec2821fa461fbb22a908e6d591a5fd45565bfa25 | Triage

Sharing

General

Target

53bd0e6557bdd9596dfcf2a2490f9167_JaffaCakes118
Size

92KB
Sample

241017-zyn6sazbnn
MD5

53bd0e6557bdd9596dfcf2a2490f9167
SHA1

c52af0d10941bb9348f994d9614972f105dd9716
SHA256

be110e097917d3533004447dec2821fa461fbb22a908e6d591a5fd45565bfa25
SHA512

e078b976dbd7905aeafbde5c98dc2e7b336621905706e18caf6f1bea5a889e6dffaf33619aafd8b0f6bdf65da12b65d876c6030a3fdca30a8d0361cd76a6325c
SSDEEP

1536:hRLFB/HeWt/Y/6WpKdVikluoqZVUIkDrQS8DiulgrL4Fmtjff:hRLFB/x/NnR3qfdkPMikdFAjff

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  53bd0e6557bdd9596dfcf2a2490f9167_JaffaCakes118
- Size
  
  92KB
- MD5
  
  53bd0e6557bdd9596dfcf2a2490f9167
- SHA1
  
  c52af0d10941bb9348f994d9614972f105dd9716
- SHA256
  
  be110e097917d3533004447dec2821fa461fbb22a908e6d591a5fd45565bfa25
- SHA512
  
  e078b976dbd7905aeafbde5c98dc2e7b336621905706e18caf6f1bea5a889e6dffaf33619aafd8b0f6bdf65da12b65d876c6030a3fdca30a8d0361cd76a6325c
- SSDEEP
  
  1536:hRLFB/HeWt/Y/6WpKdVikluoqZVUIkDrQS8DiulgrL4Fmtjff:hRLFB/x/NnR3qfdkPMikdFAjff
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence