23098013a14afd2503f37adcf5aa22c23d4411ae43010cac0049daaaf506e027 | Triage

Sharing

General

Target

69114344c59a93de20b6bdb2fd0d5618_JaffaCakes118
Size

129KB
Sample

240522-3zfsksdh41
MD5

69114344c59a93de20b6bdb2fd0d5618
SHA1

f8ee5ac1527d75c3170ce9750454b3e5445228fd
SHA256

23098013a14afd2503f37adcf5aa22c23d4411ae43010cac0049daaaf506e027
SHA512

c0ce4676f7c1c33a197f7ec7681f72e0f746a63ed590e8432c502e95d14eb77a1eaab4a0e2f181c707ffa25ac2d9da4416234243c25cc471d85caa672a73d9d5
SSDEEP

3072:ucaJvW8koHjmX+1+0cxxsWEsJ0ifXcIp08Moed5YGZ:ucaJuqVxYT52MZMf/

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  69114344c59a93de20b6bdb2fd0d5618_JaffaCakes118
- Size
  
  129KB
- MD5
  
  69114344c59a93de20b6bdb2fd0d5618
- SHA1
  
  f8ee5ac1527d75c3170ce9750454b3e5445228fd
- SHA256
  
  23098013a14afd2503f37adcf5aa22c23d4411ae43010cac0049daaaf506e027
- SHA512
  
  c0ce4676f7c1c33a197f7ec7681f72e0f746a63ed590e8432c502e95d14eb77a1eaab4a0e2f181c707ffa25ac2d9da4416234243c25cc471d85caa672a73d9d5
- SSDEEP
  
  3072:ucaJvW8koHjmX+1+0cxxsWEsJ0ifXcIp08Moed5YGZ:ucaJuqVxYT52MZMf/
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2