28b7a290b88816232c5d77098d6ab168181dba7871dff11c6b99b5b0fe7e7baf | Triage

Sharing

General

Target

6941e80b5184c035c4880b26ba1b4ca3_JaffaCakes118
Size

167KB
Sample

240523-bmxrsagb4z
MD5

6941e80b5184c035c4880b26ba1b4ca3
SHA1

92fd508dbd290871e0b9a028de13ff37c35d70a8
SHA256

28b7a290b88816232c5d77098d6ab168181dba7871dff11c6b99b5b0fe7e7baf
SHA512

0e4377bd543c28017970e4f82292b3cd60217866ef329c0f4e8ba860326b097e103cd065c971e8b3e013c6833c27b48110c4c1e463c5f3f10d5d8baa7b1665c5
SSDEEP

3072:jmVW8iTX/3RfldjjXq1+0cxxsWEL02fXcIp08MoeDQQyqJvA:aM7jJlRexYTHYZMyqe

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  6941e80b5184c035c4880b26ba1b4ca3_JaffaCakes118
- Size
  
  167KB
- MD5
  
  6941e80b5184c035c4880b26ba1b4ca3
- SHA1
  
  92fd508dbd290871e0b9a028de13ff37c35d70a8
- SHA256
  
  28b7a290b88816232c5d77098d6ab168181dba7871dff11c6b99b5b0fe7e7baf
- SHA512
  
  0e4377bd543c28017970e4f82292b3cd60217866ef329c0f4e8ba860326b097e103cd065c971e8b3e013c6833c27b48110c4c1e463c5f3f10d5d8baa7b1665c5
- SSDEEP
  
  3072:jmVW8iTX/3RfldjjXq1+0cxxsWEL02fXcIp08MoeDQQyqJvA:aM7jJlRexYTHYZMyqe
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2