d45aa9beebd6ec359f1631f4a0828706f0beb720a796e180ed44f3c0f6dccaeb | Triage

Sharing

General

Target

1abe2871bc6b2c85ccdb59d3dec22248_JaffaCakes118
Size

192KB
Sample

240701-lahgfatbqc
MD5

1abe2871bc6b2c85ccdb59d3dec22248
SHA1

eaa7e9541f21925cdddd8e92f0a3d65078d53844
SHA256

d45aa9beebd6ec359f1631f4a0828706f0beb720a796e180ed44f3c0f6dccaeb
SHA512

3fe2ab09687805b697e03b9cd838dcd57c40543798df467f12ec1d1ea3aa1da416ee52b7adef0d9359680837cbcded0706c78be6126c151c00ff0d72bad83c2b
SSDEEP

3072:P4gmUqOkNLKhp9BzKkOIa3VfjcUawqBzcJy0VLMwRzftekkuyLusURmyMCbJG2B/:lE4vUVLtaFVz0VLM81eVezMb2BdeI

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  1abe2871bc6b2c85ccdb59d3dec22248_JaffaCakes118
- Size
  
  192KB
- MD5
  
  1abe2871bc6b2c85ccdb59d3dec22248
- SHA1
  
  eaa7e9541f21925cdddd8e92f0a3d65078d53844
- SHA256
  
  d45aa9beebd6ec359f1631f4a0828706f0beb720a796e180ed44f3c0f6dccaeb
- SHA512
  
  3fe2ab09687805b697e03b9cd838dcd57c40543798df467f12ec1d1ea3aa1da416ee52b7adef0d9359680837cbcded0706c78be6126c151c00ff0d72bad83c2b
- SSDEEP
  
  3072:P4gmUqOkNLKhp9BzKkOIa3VfjcUawqBzcJy0VLMwRzftekkuyLusURmyMCbJG2B/:lE4vUVLtaFVz0VLM81eVezMb2BdeI
Score

7^/10

persistence
- Deletes itself
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2