b58ec7a88b636a6cd6f0176d8926dfdfd2b8dd7e2b57845ca31a7a160bac2d50 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0aaa29232e18981572949f8433c3081c_JaffaCakes118
Size

28KB
Sample

240624-y42tds1emg
MD5

0aaa29232e18981572949f8433c3081c
SHA1

7b2b5ed742aad19446d2aec129446b382872711c
SHA256

b58ec7a88b636a6cd6f0176d8926dfdfd2b8dd7e2b57845ca31a7a160bac2d50
SHA512

ecfe3fd470e37db010007417136d652a260ebc3be7b7890bc2725a6cb7ccd76dd70891257af2275d0b41c3179aba28df31282424d7a1a2c5851b4b81d2729014
SSDEEP

768:EbKYuKslLONK2Gf+9DK/9wKRjlrXdLF+TsfWdHpMoiV:EbKNdINK2e+hK/9LjlrtPfWdJ2V

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  0aaa29232e18981572949f8433c3081c_JaffaCakes118
- Size
  
  28KB
- MD5
  
  0aaa29232e18981572949f8433c3081c
- SHA1
  
  7b2b5ed742aad19446d2aec129446b382872711c
- SHA256
  
  b58ec7a88b636a6cd6f0176d8926dfdfd2b8dd7e2b57845ca31a7a160bac2d50
- SHA512
  
  ecfe3fd470e37db010007417136d652a260ebc3be7b7890bc2725a6cb7ccd76dd70891257af2275d0b41c3179aba28df31282424d7a1a2c5851b4b81d2729014
- SSDEEP
  
  768:EbKYuKslLONK2Gf+9DK/9wKRjlrXdLF+TsfWdHpMoiV:EbKNdINK2e+hK/9LjlrtPfWdJ2V
Score

7^/10

persistence
- Drops startup file
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2