mystic | e8001f89de10f0de0da01869fb6ce511405e8edc99b374138518395ee79db494 | Triage

Sharing

General

Target

ec4960d7c6261ff8272b40a708431fd2_JaffaCakes118
Size

269KB
Sample

240411-agvvkaab21
MD5

ec4960d7c6261ff8272b40a708431fd2
SHA1

57f4e6e6f41e50f52161311033b5e47cae28a7dc
SHA256

e8001f89de10f0de0da01869fb6ce511405e8edc99b374138518395ee79db494
SHA512

a297bb5f2e95faa70506cdb8608608ce2ae20ffaecd44949bfb2bb633a20319cdd3f64fd9e1c99c29ac5e517b7d7707c1a794b47fbe06af7a3480e132a7dbf9e
SSDEEP

6144:FTdochbDK1aPxNaotanzwDH/yvjEp5ERAPzBn5aNyP7VL:MxboIzwijEkGhMeVL

Score

10^/10

mystic persistence

Malware Config

Targets

- Target
  
  ec4960d7c6261ff8272b40a708431fd2_JaffaCakes118
- Size
  
  269KB
- MD5
  
  ec4960d7c6261ff8272b40a708431fd2
- SHA1
  
  57f4e6e6f41e50f52161311033b5e47cae28a7dc
- SHA256
  
  e8001f89de10f0de0da01869fb6ce511405e8edc99b374138518395ee79db494
- SHA512
  
  a297bb5f2e95faa70506cdb8608608ce2ae20ffaecd44949bfb2bb633a20319cdd3f64fd9e1c99c29ac5e517b7d7707c1a794b47fbe06af7a3480e132a7dbf9e
- SSDEEP
  
  6144:FTdochbDK1aPxNaotanzwDH/yvjEp5ERAPzBn5aNyP7VL:MxboIzwijEkGhMeVL
Score

7^/10

persistence
- Registers COM server for autorun
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2