0f6f214bfd7a38fcf06fa75a28b217d8dab223acceb047b1b46fefe7489d170c | Triage

Sharing

General

Target

f98d250c6525dda1479dfd22f6ed2210_JaffaCakes118
Size

24KB
Sample

240419-fjlbsshd55
MD5

f98d250c6525dda1479dfd22f6ed2210
SHA1

439c14c0315eb4350cc86e1774c163ff11e1c882
SHA256

0f6f214bfd7a38fcf06fa75a28b217d8dab223acceb047b1b46fefe7489d170c
SHA512

406db794183cfcdfac153104152df471c6364a29b9043cb59a461d396f62505ee1047de064bc621ec2fb621b5d9a957f83ed0c0897a760cc8f44e3b9a66ed7a4
SSDEEP

384:/TX/af+PQqzIz0fa1WhIrI9bSLUPn7D9yXMD:/22Qq0ofaUhIE9mWnMX0

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  f98d250c6525dda1479dfd22f6ed2210_JaffaCakes118
- Size
  
  24KB
- MD5
  
  f98d250c6525dda1479dfd22f6ed2210
- SHA1
  
  439c14c0315eb4350cc86e1774c163ff11e1c882
- SHA256
  
  0f6f214bfd7a38fcf06fa75a28b217d8dab223acceb047b1b46fefe7489d170c
- SHA512
  
  406db794183cfcdfac153104152df471c6364a29b9043cb59a461d396f62505ee1047de064bc621ec2fb621b5d9a957f83ed0c0897a760cc8f44e3b9a66ed7a4
- SSDEEP
  
  384:/TX/af+PQqzIz0fa1WhIrI9bSLUPn7D9yXMD:/22Qq0ofaUhIE9mWnMX0
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence