d1a71a99755f28a224841c89945998115133cedc8381057ef21b4cc29b99862f | Triage

Sharing

General

Target

0c1d041d0e728645ffeb35f69f706192_JaffaCakes118
Size

713KB
Sample

240625-c7v95awgrh
MD5

0c1d041d0e728645ffeb35f69f706192
SHA1

a78aa4d98855615c01f2549cae292da8b8711ad1
SHA256

d1a71a99755f28a224841c89945998115133cedc8381057ef21b4cc29b99862f
SHA512

b7a738cb090cd04e93e4a69d18b82162144ac80f1ab8513087da67025aca2dfad6a7bc2df1d69ad8a32e7ccd8e969824d8a6ea162b489428236cd2fca334ee57
SSDEEP

12288:HnnTE8MpAYJoionJL+ExP6di1KUUWwc7Pp0dU5XONF6alFFJnTzZVz:HIHmh/xP6E1KUGCp0d++T6alRnTzZV

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  0c1d041d0e728645ffeb35f69f706192_JaffaCakes118
- Size
  
  713KB
- MD5
  
  0c1d041d0e728645ffeb35f69f706192
- SHA1
  
  a78aa4d98855615c01f2549cae292da8b8711ad1
- SHA256
  
  d1a71a99755f28a224841c89945998115133cedc8381057ef21b4cc29b99862f
- SHA512
  
  b7a738cb090cd04e93e4a69d18b82162144ac80f1ab8513087da67025aca2dfad6a7bc2df1d69ad8a32e7ccd8e969824d8a6ea162b489428236cd2fca334ee57
- SSDEEP
  
  12288:HnnTE8MpAYJoionJL+ExP6di1KUUWwc7Pp0dU5XONF6alFFJnTzZVz:HIHmh/xP6E1KUGCp0d++T6alRnTzZV
Score

8^/10

persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2