c3f6995fbb357b8124060c91bca447478575a029d71465b9a8e9432ae9d64895 | Triage

Sharing

General

Target

3677fa2d09090c907473dd468fb6de7f_JaffaCakes118
Size

132KB
Sample

240511-zhy12sbb87
MD5

3677fa2d09090c907473dd468fb6de7f
SHA1

09eb75eeb007d909b28c224e474cc9dafaa4cdf3
SHA256

c3f6995fbb357b8124060c91bca447478575a029d71465b9a8e9432ae9d64895
SHA512

b63af215a2b30fa387f89987586bd1716d42afc6e2ac10a542da3d64b3fb474d4967f0661472e8041d2a62fa2169e6ec07a86f3e9120e530b909b9a894b7759a
SSDEEP

3072:Iym8aIc8XoRv2H2Ll0mNpLOvFXfDTC0I:IymT8XoR9xS80I

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  3677fa2d09090c907473dd468fb6de7f_JaffaCakes118
- Size
  
  132KB
- MD5
  
  3677fa2d09090c907473dd468fb6de7f
- SHA1
  
  09eb75eeb007d909b28c224e474cc9dafaa4cdf3
- SHA256
  
  c3f6995fbb357b8124060c91bca447478575a029d71465b9a8e9432ae9d64895
- SHA512
  
  b63af215a2b30fa387f89987586bd1716d42afc6e2ac10a542da3d64b3fb474d4967f0661472e8041d2a62fa2169e6ec07a86f3e9120e530b909b9a894b7759a
- SSDEEP
  
  3072:Iym8aIc8XoRv2H2Ll0mNpLOvFXfDTC0I:IymT8XoR9xS80I
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence