097220ee85e37169d54e160276aaad25425636826facccd17ecbd5ab31d4d228 | Triage

Sharing

General

Target

0ca59122f5d3a3853e67612a48df78ab_JaffaCakes118
Size

69KB
Sample

240625-fkc2tavdmm
MD5

0ca59122f5d3a3853e67612a48df78ab
SHA1

23d167aa148010956ee0fdb19db0cf730b5608de
SHA256

097220ee85e37169d54e160276aaad25425636826facccd17ecbd5ab31d4d228
SHA512

b0701162232d645779a8672f535ff07e4286f36edf48a336fefb84ddc4437e5bd2b8be5d29f3bb9c2184ad4c4f0605f936b808101ab277ba6365a90aeb5bb12c
SSDEEP

1536:FNxU+W+73uSpoo3e/8+dcr2yS7yt0xzSjo+QQad:NU+W+qNo3e9Sy/K882

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  0ca59122f5d3a3853e67612a48df78ab_JaffaCakes118
- Size
  
  69KB
- MD5
  
  0ca59122f5d3a3853e67612a48df78ab
- SHA1
  
  23d167aa148010956ee0fdb19db0cf730b5608de
- SHA256
  
  097220ee85e37169d54e160276aaad25425636826facccd17ecbd5ab31d4d228
- SHA512
  
  b0701162232d645779a8672f535ff07e4286f36edf48a336fefb84ddc4437e5bd2b8be5d29f3bb9c2184ad4c4f0605f936b808101ab277ba6365a90aeb5bb12c
- SSDEEP
  
  1536:FNxU+W+73uSpoo3e/8+dcr2yS7yt0xzSjo+QQad:NU+W+qNo3e9Sy/K882
Score

8^/10

persistence
- Event Triggered Execution: Image File Execution Options Injection
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Event Triggered Execution

Image File Execution Options Injection

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Event Triggered Execution

Image File Execution Options Injection

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2