960172bb99b165b86661612c294b3196f11fe0a8995a924b1523c69968cf1d08 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

09ed1d6f214c1e89cf137eb9d80f41fa_JaffaCakes118
Size

115KB
Sample

240624-wbpx1svcjb
MD5

09ed1d6f214c1e89cf137eb9d80f41fa
SHA1

d1f474b2731da6982edeb340669da4b1c248948c
SHA256

960172bb99b165b86661612c294b3196f11fe0a8995a924b1523c69968cf1d08
SHA512

702e8534dc64e972afb87c5de19c9230d7465a055ef4bf73e90deb00be5f7e1e74afbc2d628b377c75f6e1e87fc93ed661da6cadb3b00b6ed95c69712dd8cfcd
SSDEEP

3072:J9yp7ZZVe1eNcmvk5Uw9OcN35Fei6foP1WUY2w5eI6h:JM9Z01eNcmvYn8sei61zzII6h

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  09ed1d6f214c1e89cf137eb9d80f41fa_JaffaCakes118
- Size
  
  115KB
- MD5
  
  09ed1d6f214c1e89cf137eb9d80f41fa
- SHA1
  
  d1f474b2731da6982edeb340669da4b1c248948c
- SHA256
  
  960172bb99b165b86661612c294b3196f11fe0a8995a924b1523c69968cf1d08
- SHA512
  
  702e8534dc64e972afb87c5de19c9230d7465a055ef4bf73e90deb00be5f7e1e74afbc2d628b377c75f6e1e87fc93ed661da6cadb3b00b6ed95c69712dd8cfcd
- SSDEEP
  
  3072:J9yp7ZZVe1eNcmvk5Uw9OcN35Fei6foP1WUY2w5eI6h:JM9Z01eNcmvYn8sei61zzII6h
Score

8^/10

persistence
- Sets service image path in registry
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2