94c0adbb005e4a2a7b15b0bdef35a9f411bcf25da990790bbae85ed51ac521c3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

06ce29ea3a6d04c87f964cd9c8cb8185_JaffaCakes118
Size

938KB
Sample

240624-bsgyhssgqf
MD5

06ce29ea3a6d04c87f964cd9c8cb8185
SHA1

1a620d58603c16b8b5c7439dccf12f0cf11bdbf0
SHA256

94c0adbb005e4a2a7b15b0bdef35a9f411bcf25da990790bbae85ed51ac521c3
SHA512

80e7c58b9bf94a8bf6b1b9a884f3af98576b1378bab70e82e9769e01f99d0154ff9d8e3634b4d9af38843b16639a8edbd221e95243af7247da35d78618c66a8e
SSDEEP

12288:NiOx+MQSq0eqjZpznRK1PwvNMWlBk76kVXZ9Kt0kGERdyMetJZ/AsysPNxVNFrVB:EOx+1Sq0eV4MakTLKthGQdyMetw0v/

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  06ce29ea3a6d04c87f964cd9c8cb8185_JaffaCakes118
- Size
  
  938KB
- MD5
  
  06ce29ea3a6d04c87f964cd9c8cb8185
- SHA1
  
  1a620d58603c16b8b5c7439dccf12f0cf11bdbf0
- SHA256
  
  94c0adbb005e4a2a7b15b0bdef35a9f411bcf25da990790bbae85ed51ac521c3
- SHA512
  
  80e7c58b9bf94a8bf6b1b9a884f3af98576b1378bab70e82e9769e01f99d0154ff9d8e3634b4d9af38843b16639a8edbd221e95243af7247da35d78618c66a8e
- SSDEEP
  
  12288:NiOx+MQSq0eqjZpznRK1PwvNMWlBk76kVXZ9Kt0kGERdyMetJZ/AsysPNxVNFrVB:EOx+1Sq0eV4MakTLKthGQdyMetw0v/
Score

7^/10

persistence
- Modifies system executable filetype association
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2