eb06b06e8ca98136027ad3aa5f873f9a4af34141f7f6c9071e14d41df6fe2afd | Triage

Sharing

General

Target

ffc0887f3589b4d2af512bad4afc7349_JaffaCakes118
Size

261KB
Sample

240421-vjk4csff24
MD5

ffc0887f3589b4d2af512bad4afc7349
SHA1

6f06af4e3cb6afb772179f16657b770ee9ef4a3b
SHA256

eb06b06e8ca98136027ad3aa5f873f9a4af34141f7f6c9071e14d41df6fe2afd
SHA512

ae9009ba1626a2e100a865f675b181e9420fd1727486887a675253aa7688c1918081d508f54ecdb84eb49033ee76fff2353a318bc3ee63674f07c03103577986
SSDEEP

6144:96aGmgBm3w8gzPjD44e3RJQ8U7OF1sW8dWvYkWGKsHz4wnh:9lP3AzPj84MrQbsfvYov4w

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  ffc0887f3589b4d2af512bad4afc7349_JaffaCakes118
- Size
  
  261KB
- MD5
  
  ffc0887f3589b4d2af512bad4afc7349
- SHA1
  
  6f06af4e3cb6afb772179f16657b770ee9ef4a3b
- SHA256
  
  eb06b06e8ca98136027ad3aa5f873f9a4af34141f7f6c9071e14d41df6fe2afd
- SHA512
  
  ae9009ba1626a2e100a865f675b181e9420fd1727486887a675253aa7688c1918081d508f54ecdb84eb49033ee76fff2353a318bc3ee63674f07c03103577986
- SSDEEP
  
  6144:96aGmgBm3w8gzPjD44e3RJQ8U7OF1sW8dWvYkWGKsHz4wnh:9lP3AzPj84MrQbsfvYov4w
Score

7^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2