b7343e6e03bd3ee539d9102a31a3cff6d5835b9c416b7c857c4eef81b2be75a6 | Triage

Sharing

General

Target

6585f7a523e6a7e7df661507f7996a5a_JaffaCakes118
Size

167KB
Sample

240522-bvx3hsgb8w
MD5

6585f7a523e6a7e7df661507f7996a5a
SHA1

f2a4f16c449d856517fc3459c6f6105c637c46ee
SHA256

b7343e6e03bd3ee539d9102a31a3cff6d5835b9c416b7c857c4eef81b2be75a6
SHA512

bd9ef396638e6eb5842c43788bf9f4e4db4c44595f02465fefce38ed52876a91e13fea59d3027c00256c3d7562d6305b8c250b30252ab185ddfb80fa339c0b93
SSDEEP

3072:jmVW8iTX/3RfldjjXq1+0cxxsWEL02fXcIp08MoeLlHz4+fxVhV:aM7jJlRexYTHYZMtzHfxfV

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  6585f7a523e6a7e7df661507f7996a5a_JaffaCakes118
- Size
  
  167KB
- MD5
  
  6585f7a523e6a7e7df661507f7996a5a
- SHA1
  
  f2a4f16c449d856517fc3459c6f6105c637c46ee
- SHA256
  
  b7343e6e03bd3ee539d9102a31a3cff6d5835b9c416b7c857c4eef81b2be75a6
- SHA512
  
  bd9ef396638e6eb5842c43788bf9f4e4db4c44595f02465fefce38ed52876a91e13fea59d3027c00256c3d7562d6305b8c250b30252ab185ddfb80fa339c0b93
- SSDEEP
  
  3072:jmVW8iTX/3RfldjjXq1+0cxxsWEL02fXcIp08MoeLlHz4+fxVhV:aM7jJlRexYTHYZMtzHfxfV
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2