5cd46a3c7ae306ba67dd2420f7186d0186fe620fc337af8f88d923f0d66a898f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

08976eab262f10999b83ccddf6628163_JaffaCakes118
Size

356KB
Sample

240620-wy1m2avfqr
MD5

08976eab262f10999b83ccddf6628163
SHA1

abeec28d8d2e8f06b2c3030b2d56e7483689c254
SHA256

5cd46a3c7ae306ba67dd2420f7186d0186fe620fc337af8f88d923f0d66a898f
SHA512

c9a53895453da1c894bed7df1fc91e992b050f215a769492342cfaf16751636b23cfba6b23a551d93cf3dc21f89ee23f884c3586b6a1953badbef9d2a2237eef
SSDEEP

6144:bIm6gMkHQj9Tj+CuPxx1YFQwuY5wUwzKrCrJHBbMmKWxCqPJd4d38N5rzO:bIm6zktCuGsY5WSCrJHlRCqPJd4p

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  08976eab262f10999b83ccddf6628163_JaffaCakes118
- Size
  
  356KB
- MD5
  
  08976eab262f10999b83ccddf6628163
- SHA1
  
  abeec28d8d2e8f06b2c3030b2d56e7483689c254
- SHA256
  
  5cd46a3c7ae306ba67dd2420f7186d0186fe620fc337af8f88d923f0d66a898f
- SHA512
  
  c9a53895453da1c894bed7df1fc91e992b050f215a769492342cfaf16751636b23cfba6b23a551d93cf3dc21f89ee23f884c3586b6a1953badbef9d2a2237eef
- SSDEEP
  
  6144:bIm6gMkHQj9Tj+CuPxx1YFQwuY5wUwzKrCrJHBbMmKWxCqPJd4d38N5rzO:bIm6zktCuGsY5WSCrJHlRCqPJd4p
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2