cb6056b4f26016278a9b6d7b0e4f89178321af2e1cdb8fe9d5f8b9c892554cdd | Triage

Sharing

General

Target

JaffaCakes118_981adce99a0d9420bc3b1e15983ed390
Size

23KB
Sample

250204-zmbfjs1qfs
MD5

981adce99a0d9420bc3b1e15983ed390
SHA1

bbeaa418c600af58ce3cf0e26dafddd492691a92
SHA256

cb6056b4f26016278a9b6d7b0e4f89178321af2e1cdb8fe9d5f8b9c892554cdd
SHA512

204fe1ef3b2e19bfaf4872295c978cd6a9b993dc6b196bb6e4e9111c772233866b77f074eebd934b0123d51faefdd944610786a06d519c57fe6fd7445283e1b4
SSDEEP

384:T25a5Gv2umCQalsEEOq24/XM8olbzOfoX/sUj08Ye3ys:iakmCeMBHDYe39

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  JaffaCakes118_981adce99a0d9420bc3b1e15983ed390
- Size
  
  23KB
- MD5
  
  981adce99a0d9420bc3b1e15983ed390
- SHA1
  
  bbeaa418c600af58ce3cf0e26dafddd492691a92
- SHA256
  
  cb6056b4f26016278a9b6d7b0e4f89178321af2e1cdb8fe9d5f8b9c892554cdd
- SHA512
  
  204fe1ef3b2e19bfaf4872295c978cd6a9b993dc6b196bb6e4e9111c772233866b77f074eebd934b0123d51faefdd944610786a06d519c57fe6fd7445283e1b4
- SSDEEP
  
  384:T25a5Gv2umCQalsEEOq24/XM8olbzOfoX/sUj08Ye3ys:iakmCeMBHDYe39
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence