e951aa51968b97a0ff2301748eea67e5b331637b183f61a7a30c7f07b08c4cbc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1e8b36a0e1743ed2541ab748502d56ec_JaffaCakes118.exe
Size

29KB
Sample

240505-kq5q8sga63
MD5

1e8b36a0e1743ed2541ab748502d56ec
SHA1

f6d84ba9566b01f61a5eed174af903db45c55683
SHA256

e951aa51968b97a0ff2301748eea67e5b331637b183f61a7a30c7f07b08c4cbc
SHA512

cbd49c965dadbf46e6d5bdeafc5fe16c2349ec8393cacbd0d09315ecb6ba4f4c4d76bf3b1caad76a0129afb83f31e7ae162a5e64a0b43371ced1bef6612671f8
SSDEEP

768:/qPJtHA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhy:/qnA6C1VqaqhtgVRNToV7TtRu8rM0wYS

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  1e8b36a0e1743ed2541ab748502d56ec_JaffaCakes118.exe
- Size
  
  29KB
- MD5
  
  1e8b36a0e1743ed2541ab748502d56ec
- SHA1
  
  f6d84ba9566b01f61a5eed174af903db45c55683
- SHA256
  
  e951aa51968b97a0ff2301748eea67e5b331637b183f61a7a30c7f07b08c4cbc
- SHA512
  
  cbd49c965dadbf46e6d5bdeafc5fe16c2349ec8393cacbd0d09315ecb6ba4f4c4d76bf3b1caad76a0129afb83f31e7ae162a5e64a0b43371ced1bef6612671f8
- SSDEEP
  
  768:/qPJtHA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhy:/qnA6C1VqaqhtgVRNToV7TtRu8rM0wYS
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2