bc4fda87b767b7e4e392f027d2ec233190d57dd50bf3a8c2ba1619f5914e47a6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0d48a4e44c9d73a994bb4b0601821c69_JaffaCakes118
Size

532KB
Sample

240625-jr5xysxfkc
MD5

0d48a4e44c9d73a994bb4b0601821c69
SHA1

2108ea6f78ea1918b8a7ed651eaf3d98ce93a818
SHA256

bc4fda87b767b7e4e392f027d2ec233190d57dd50bf3a8c2ba1619f5914e47a6
SHA512

93c4a5ffecd7ddfca815133b454a03090034b5b89cc05830a847d9f5bd5cf3cf5d0bc6984e6b9129e5cc2452da007fc9bb01f91a18131ed6cccf0617a2afc96f
SSDEEP

3072:7+ZvkWp8qX96QfCDpMqrT4GmdVM3bXKCKk3T1a/PTYhA7Jf22QA6Ivv1tH/nSrNV:aZmqt6Qyiy3b6CR10TY8JOArF9S9x

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  0d48a4e44c9d73a994bb4b0601821c69_JaffaCakes118
- Size
  
  532KB
- MD5
  
  0d48a4e44c9d73a994bb4b0601821c69
- SHA1
  
  2108ea6f78ea1918b8a7ed651eaf3d98ce93a818
- SHA256
  
  bc4fda87b767b7e4e392f027d2ec233190d57dd50bf3a8c2ba1619f5914e47a6
- SHA512
  
  93c4a5ffecd7ddfca815133b454a03090034b5b89cc05830a847d9f5bd5cf3cf5d0bc6984e6b9129e5cc2452da007fc9bb01f91a18131ed6cccf0617a2afc96f
- SSDEEP
  
  3072:7+ZvkWp8qX96QfCDpMqrT4GmdVM3bXKCKk3T1a/PTYhA7Jf22QA6Ivv1tH/nSrNV:aZmqt6Qyiy3b6CR10TY8JOArF9S9x
Score

7^/10

persistence
- Deletes itself
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2