General
-
Target
2603595e0152a048aa16a396807edc5d_JaffaCakes118
-
Size
299KB
-
Sample
240704-ychlfavfpq
-
MD5
2603595e0152a048aa16a396807edc5d
-
SHA1
e7fe0a106d57a5fdab91dba4a93ade1b03c16f55
-
SHA256
1ebd706e12e2d0075996a9e0ebafd9901557ba8da710c8673dac5cad85a5c483
-
SHA512
96ee1ad8235b5f15bf926d10cf960e29d7a080cb173d5fb7fd8c62a6a68db51fe7681aa516a66f90c315b226e8c71b1af0b80abf5311bafa8ba4955fa2ad2603
-
SSDEEP
6144:MRAhhJxX7bNIAROzTuft0M2GVK5LYusDktTP1HU+f6MJu3lVBRLHg1uG6C:UsAAPF0MnU3sDkd1HUAJu1hA1uG7
Malware Config
Targets
-
-
Target
2603595e0152a048aa16a396807edc5d_JaffaCakes118
-
Size
299KB
-
MD5
2603595e0152a048aa16a396807edc5d
-
SHA1
e7fe0a106d57a5fdab91dba4a93ade1b03c16f55
-
SHA256
1ebd706e12e2d0075996a9e0ebafd9901557ba8da710c8673dac5cad85a5c483
-
SHA512
96ee1ad8235b5f15bf926d10cf960e29d7a080cb173d5fb7fd8c62a6a68db51fe7681aa516a66f90c315b226e8c71b1af0b80abf5311bafa8ba4955fa2ad2603
-
SSDEEP
6144:MRAhhJxX7bNIAROzTuft0M2GVK5LYusDktTP1HU+f6MJu3lVBRLHg1uG6C:UsAAPF0MnU3sDkd1HUAJu1hA1uG7
Score8/10-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Executes dropped EXE
-
Modifies system executable filetype association
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2Active Setup
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1