002ecfc37c487485a1e3fd7c6dd26bc81baf4748a2f5241fbcbeab86c2710d8b | Triage

Sharing

General

Target

29fd5e3d7ff9af1cb3e949d4ae540ea6_JaffaCakes118
Size

302KB
Sample

240707-p53yeaverh
MD5

29fd5e3d7ff9af1cb3e949d4ae540ea6
SHA1

4d7f9df1d2c20d03e4b65d7d3ad445cc8a82cf84
SHA256

002ecfc37c487485a1e3fd7c6dd26bc81baf4748a2f5241fbcbeab86c2710d8b
SHA512

a2b96972fd6cbd937643b331d0976c70a31bb939e393778877789b810dad4c79d757fc01cc2b16e25ed5b0357168890b221d67d6e821b0f951e18ff3396dbd34
SSDEEP

6144:HfpDlKMDtaPjRRBscW5bzmcd01qwxkLsMUoAHENeOvZ2kMu7bB/1etYy:hDQKsoVmcdhdVUoz1vMk9jYY

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  29fd5e3d7ff9af1cb3e949d4ae540ea6_JaffaCakes118
- Size
  
  302KB
- MD5
  
  29fd5e3d7ff9af1cb3e949d4ae540ea6
- SHA1
  
  4d7f9df1d2c20d03e4b65d7d3ad445cc8a82cf84
- SHA256
  
  002ecfc37c487485a1e3fd7c6dd26bc81baf4748a2f5241fbcbeab86c2710d8b
- SHA512
  
  a2b96972fd6cbd937643b331d0976c70a31bb939e393778877789b810dad4c79d757fc01cc2b16e25ed5b0357168890b221d67d6e821b0f951e18ff3396dbd34
- SSDEEP
  
  6144:HfpDlKMDtaPjRRBscW5bzmcd01qwxkLsMUoAHENeOvZ2kMu7bB/1etYy:hDQKsoVmcdhdVUoz1vMk9jYY
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2