28462b53f1b1a5dafa38c52bd0bd03afb463c36cc1db9b696024d2e05c558266 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0d6c5964422ebedcd79fca354dc16e09_JaffaCakes118
Size

244KB
Sample

240625-knnpyasfmr
MD5

0d6c5964422ebedcd79fca354dc16e09
SHA1

b575e40e168617639c7691b32115cc8fe88ceaf1
SHA256

28462b53f1b1a5dafa38c52bd0bd03afb463c36cc1db9b696024d2e05c558266
SHA512

0965ae0bfc6b11bf6581cc061d21d0251d3e0489fbeb1a7a8c686a9292f1da39c57dafb090da8ec04f47ff735560c451274e7246802ccde8c331462e0ea079d2
SSDEEP

3072:8tfEkyO3femk6K0Ua1JMYd5nzxqvdsqhwQ56vc6fsCrwllAncWa++RYx8prUowpe:gNPksMAzxqF9hL5P6f3qOy++Rlpvg4X

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0d6c5964422ebedcd79fca354dc16e09_JaffaCakes118
- Size
  
  244KB
- MD5
  
  0d6c5964422ebedcd79fca354dc16e09
- SHA1
  
  b575e40e168617639c7691b32115cc8fe88ceaf1
- SHA256
  
  28462b53f1b1a5dafa38c52bd0bd03afb463c36cc1db9b696024d2e05c558266
- SHA512
  
  0965ae0bfc6b11bf6581cc061d21d0251d3e0489fbeb1a7a8c686a9292f1da39c57dafb090da8ec04f47ff735560c451274e7246802ccde8c331462e0ea079d2
- SSDEEP
  
  3072:8tfEkyO3femk6K0Ua1JMYd5nzxqvdsqhwQ56vc6fsCrwllAncWa++RYx8prUowpe:gNPksMAzxqF9hL5P6f3qOy++Rlpvg4X
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2