c09258b6c482df18804bd0c3c8648ae20d1f5393f5484e8641af6d20cd0e6012 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

17cccce2ca497b02089603cb9a27147b_JaffaCakes118
Size

176KB
Sample

240627-2mwgtsxhqn
MD5

17cccce2ca497b02089603cb9a27147b
SHA1

7862a60460fb8529822753a5dfc761bd3174c2da
SHA256

c09258b6c482df18804bd0c3c8648ae20d1f5393f5484e8641af6d20cd0e6012
SHA512

ef30640b79a8e1966799bbcf4cf1885c3b6603c386cab1480a1feb974ba1139516a48e46bcecd613fcc5878a1c932e6789b1708b265926042416f382e13db50f
SSDEEP

3072:3EXRjPrPmZ0Jmtikju5Ubn1v/TmkMpKsYqWyQwDsI3QZQTB:gjPCL0UDJoVpQSQE

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  17cccce2ca497b02089603cb9a27147b_JaffaCakes118
- Size
  
  176KB
- MD5
  
  17cccce2ca497b02089603cb9a27147b
- SHA1
  
  7862a60460fb8529822753a5dfc761bd3174c2da
- SHA256
  
  c09258b6c482df18804bd0c3c8648ae20d1f5393f5484e8641af6d20cd0e6012
- SHA512
  
  ef30640b79a8e1966799bbcf4cf1885c3b6603c386cab1480a1feb974ba1139516a48e46bcecd613fcc5878a1c932e6789b1708b265926042416f382e13db50f
- SSDEEP
  
  3072:3EXRjPrPmZ0Jmtikju5Ubn1v/TmkMpKsYqWyQwDsI3QZQTB:gjPCL0UDJoVpQSQE
Score

8^/10

persistence
- Sets service image path in registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2