aa7524a0f0a414be9ba62999e1200dfc170683f018f25d9ff081b438c226b966 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0131084affec603565b70de2b3877550_JaffaCakes118
Size

76KB
Sample

240619-3km84sxarb
MD5

0131084affec603565b70de2b3877550
SHA1

1c72c942968da2a4c7f5ec4522b2fc0d591cf753
SHA256

aa7524a0f0a414be9ba62999e1200dfc170683f018f25d9ff081b438c226b966
SHA512

e7375f4cdcad4dcd42de4e902628636322a0271cd6134c57c381cdba288b57f5d099145a356f98ef7b8b930dbd828b55ffd5546b43c0a34e76672d638203bb36
SSDEEP

1536:hBNTlIEvxLndB1NV0CR9LUqzSHvbavaRtlcXfXW9h4TG88rSEtElRvfLpf+:hBHxZpB13XLUzOSLcfYh4T8SnLpG

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  0131084affec603565b70de2b3877550_JaffaCakes118
- Size
  
  76KB
- MD5
  
  0131084affec603565b70de2b3877550
- SHA1
  
  1c72c942968da2a4c7f5ec4522b2fc0d591cf753
- SHA256
  
  aa7524a0f0a414be9ba62999e1200dfc170683f018f25d9ff081b438c226b966
- SHA512
  
  e7375f4cdcad4dcd42de4e902628636322a0271cd6134c57c381cdba288b57f5d099145a356f98ef7b8b930dbd828b55ffd5546b43c0a34e76672d638203bb36
- SSDEEP
  
  1536:hBNTlIEvxLndB1NV0CR9LUqzSHvbavaRtlcXfXW9h4TG88rSEtElRvfLpf+:hBHxZpB13XLUzOSLcfYh4T8SnLpG
Score

8^/10

persistence
- Blocklisted process makes network request
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2