87cba23aae5844925a851dc0d71007936c4ba140d0bc932800223fe093456f2f | Triage

Sharing

General

Target

0dfa7c02f4bc82b81e87744634dd3285_JaffaCakes118
Size

76KB
Sample

240625-n4g4wa1fjr
MD5

0dfa7c02f4bc82b81e87744634dd3285
SHA1

0b51ddcca2470fd50fbcaecd9ab5646d9e0c9f87
SHA256

87cba23aae5844925a851dc0d71007936c4ba140d0bc932800223fe093456f2f
SHA512

154ced45634e69136870b65c0cf7e1cc53fc154939bf1efec6366e3a56ba9b83ee6a3f49fbc9179cd6ca981d51ed9cb40c17b4590a1e57447322163fc1f0b1ff
SSDEEP

1536:1rUlDSCvWmum6ezmm/ASwwb50UUgaolhCgV8ckz6Jc6gwd+Wl:p8DTumuhez9/Xwwb50UUgaonCgV8c3J7

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  0dfa7c02f4bc82b81e87744634dd3285_JaffaCakes118
- Size
  
  76KB
- MD5
  
  0dfa7c02f4bc82b81e87744634dd3285
- SHA1
  
  0b51ddcca2470fd50fbcaecd9ab5646d9e0c9f87
- SHA256
  
  87cba23aae5844925a851dc0d71007936c4ba140d0bc932800223fe093456f2f
- SHA512
  
  154ced45634e69136870b65c0cf7e1cc53fc154939bf1efec6366e3a56ba9b83ee6a3f49fbc9179cd6ca981d51ed9cb40c17b4590a1e57447322163fc1f0b1ff
- SSDEEP
  
  1536:1rUlDSCvWmum6ezmm/ASwwb50UUgaolhCgV8ckz6Jc6gwd+Wl:p8DTumuhez9/Xwwb50UUgaonCgV8c3J7
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2