0e279bfea1cd9a5e9f959ee99f16882b957aeefe05e2a1f7c7bcc2948fb7af26 | Triage

Sharing

General

Target

074b75d28a2aa3f5663b2f5cfbf4ebc7_JaffaCakes118
Size

4.0MB
Sample

240624-jq32zavemm
MD5

074b75d28a2aa3f5663b2f5cfbf4ebc7
SHA1

c14a820bf6d51acb1a2a4b1cbae8ecaabfddec23
SHA256

0e279bfea1cd9a5e9f959ee99f16882b957aeefe05e2a1f7c7bcc2948fb7af26
SHA512

07c311e84778fdf4bdab10d78b7576c096e3514b54cf2c57324c4cf43b94800dbbd8bd1572ecc662201b65e33343f991ac7139fc521a7c1f5898ff43535ff2fc
SSDEEP

98304:hUQdqWqXfWssw+RQYSZSFBzhcMxxxB+Yh:hUQdqWqXuvXRQjUTzhcMjeYh

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  074b75d28a2aa3f5663b2f5cfbf4ebc7_JaffaCakes118
- Size
  
  4.0MB
- MD5
  
  074b75d28a2aa3f5663b2f5cfbf4ebc7
- SHA1
  
  c14a820bf6d51acb1a2a4b1cbae8ecaabfddec23
- SHA256
  
  0e279bfea1cd9a5e9f959ee99f16882b957aeefe05e2a1f7c7bcc2948fb7af26
- SHA512
  
  07c311e84778fdf4bdab10d78b7576c096e3514b54cf2c57324c4cf43b94800dbbd8bd1572ecc662201b65e33343f991ac7139fc521a7c1f5898ff43535ff2fc
- SSDEEP
  
  98304:hUQdqWqXfWssw+RQYSZSFBzhcMxxxB+Yh:hUQdqWqXuvXRQjUTzhcMjeYh
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2