0db90c83b91f2545aa3f8853ee1763ae6441d498d4782c8994875896ac8f2a49 | Triage

Sharing

General

Target

0a95e50bab205a16fa319433aacbc6b4_JaffaCakes118
Size

165KB
Sample

240430-2lb2ssbd68
MD5

0a95e50bab205a16fa319433aacbc6b4
SHA1

cab0aa2c7216158358dfbff44756e36364727c7d
SHA256

0db90c83b91f2545aa3f8853ee1763ae6441d498d4782c8994875896ac8f2a49
SHA512

dec91bef647f9d8a9900bb01b69ba8c7a16a532083db049e78fe3e353e5f60da1757b66f6b5f81fb33bc41fbf8637bd2097958f1e9736c7d817c9594eb1ca317
SSDEEP

3072:jmVW8iTX/3RfldjjXq1+0cxxsWEL02fXcIp08Moe0oNW3ygNo:aM7jJlRexYTHYZM0yJ

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  0a95e50bab205a16fa319433aacbc6b4_JaffaCakes118
- Size
  
  165KB
- MD5
  
  0a95e50bab205a16fa319433aacbc6b4
- SHA1
  
  cab0aa2c7216158358dfbff44756e36364727c7d
- SHA256
  
  0db90c83b91f2545aa3f8853ee1763ae6441d498d4782c8994875896ac8f2a49
- SHA512
  
  dec91bef647f9d8a9900bb01b69ba8c7a16a532083db049e78fe3e353e5f60da1757b66f6b5f81fb33bc41fbf8637bd2097958f1e9736c7d817c9594eb1ca317
- SSDEEP
  
  3072:jmVW8iTX/3RfldjjXq1+0cxxsWEL02fXcIp08Moe0oNW3ygNo:aM7jJlRexYTHYZM0yJ
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2