49a6c4d6c69d05d64d386ec8ea58af560188d658a79e3c66d5530e3962947ca3 | Triage

Sharing

General

Target

27b564b7c8a50ea2975d2cff34da831f_JaffaCakes118
Size

1.1MB
Sample

240706-h6rhfasgrd
MD5

27b564b7c8a50ea2975d2cff34da831f
SHA1

f8ce8fad3125b1b9367a8b6ed5d57617dd14e3ac
SHA256

49a6c4d6c69d05d64d386ec8ea58af560188d658a79e3c66d5530e3962947ca3
SHA512

bcae6fa0c828d6d12f8b3a40e34f9a26167035c040c5ee8606a3bf7874ec775ba113584e279aabd5a8608bd87d219608ebfaeb6e2d4c492bd6acdc8951889a08
SSDEEP

24576:r7dbpEjLSm2V2W9MMlAB5ccBK3I6jn0FZGG:r7hGi5vABqlI6T0F

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  27b564b7c8a50ea2975d2cff34da831f_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  27b564b7c8a50ea2975d2cff34da831f
- SHA1
  
  f8ce8fad3125b1b9367a8b6ed5d57617dd14e3ac
- SHA256
  
  49a6c4d6c69d05d64d386ec8ea58af560188d658a79e3c66d5530e3962947ca3
- SHA512
  
  bcae6fa0c828d6d12f8b3a40e34f9a26167035c040c5ee8606a3bf7874ec775ba113584e279aabd5a8608bd87d219608ebfaeb6e2d4c492bd6acdc8951889a08
- SSDEEP
  
  24576:r7dbpEjLSm2V2W9MMlAB5ccBK3I6jn0FZGG:r7hGi5vABqlI6T0F
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2