cfa9fc69727953f64ef7acb1e5e4d2896646b5b91df8d00b511120cc34854f15 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

068c9a7b37653de4fabe6d98dc7fe725_JaffaCakes118
Size

186KB
Sample

240624-bkkpfasdmc
MD5

068c9a7b37653de4fabe6d98dc7fe725
SHA1

7cbce6bc52b7168cac7b9c35195d39c358324c6e
SHA256

cfa9fc69727953f64ef7acb1e5e4d2896646b5b91df8d00b511120cc34854f15
SHA512

43076a5597aa314b07ed6bcd6d7218775be0ef9424700f02b2ac83936bed9111c40fcb0106cfab9bcdbcc286d1de3bf8550163f4667cc1f6b236b7a52c0298a3
SSDEEP

3072:2dMa79Z5+qznHKiqAbSkPBsItOZ+7SUxzfxhgJrtxw/PfbyaWd8F3m8lj:2uSvqiqd6BvtOZc7yJ8jyaWd8F3nF

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  068c9a7b37653de4fabe6d98dc7fe725_JaffaCakes118
- Size
  
  186KB
- MD5
  
  068c9a7b37653de4fabe6d98dc7fe725
- SHA1
  
  7cbce6bc52b7168cac7b9c35195d39c358324c6e
- SHA256
  
  cfa9fc69727953f64ef7acb1e5e4d2896646b5b91df8d00b511120cc34854f15
- SHA512
  
  43076a5597aa314b07ed6bcd6d7218775be0ef9424700f02b2ac83936bed9111c40fcb0106cfab9bcdbcc286d1de3bf8550163f4667cc1f6b236b7a52c0298a3
- SSDEEP
  
  3072:2dMa79Z5+qznHKiqAbSkPBsItOZ+7SUxzfxhgJrtxw/PfbyaWd8F3m8lj:2uSvqiqd6BvtOZc7yJ8jyaWd8F3nF
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2