General
-
Target
2b538ec853e3dc0c8e7688f4e84e00e7_JaffaCakes118
-
Size
438KB
-
Sample
240708-hb6nwayfre
-
MD5
2b538ec853e3dc0c8e7688f4e84e00e7
-
SHA1
df370bfcf5d014e12f1f4ad47f81ac04cbd70552
-
SHA256
e22597e1a36d25d3faa9800824dfed692febed56d30168266aaae394e3d8619b
-
SHA512
4565cca99981e93556520f40a74c69d2438bb10da9e20f19f56629f202a05c50a5a5835af96acbbead61068aa41e4e7f163232bf32a0757a2d6a6affa9835383
-
SSDEEP
6144:NtKe6YiDdv3m3mgKHIl7bNIKTQ/ary222wItJdmSMe0tQd1VbAXQYQSkLH2VDsn+:NtKe6Zv23YdL/W52P2Ic0tQd14QYLc+
Malware Config
Targets
-
-
Target
2b538ec853e3dc0c8e7688f4e84e00e7_JaffaCakes118
-
Size
438KB
-
MD5
2b538ec853e3dc0c8e7688f4e84e00e7
-
SHA1
df370bfcf5d014e12f1f4ad47f81ac04cbd70552
-
SHA256
e22597e1a36d25d3faa9800824dfed692febed56d30168266aaae394e3d8619b
-
SHA512
4565cca99981e93556520f40a74c69d2438bb10da9e20f19f56629f202a05c50a5a5835af96acbbead61068aa41e4e7f163232bf32a0757a2d6a6affa9835383
-
SSDEEP
6144:NtKe6YiDdv3m3mgKHIl7bNIKTQ/ary222wItJdmSMe0tQd1VbAXQYQSkLH2VDsn+:NtKe6Zv23YdL/W52P2Ic0tQd14QYLc+
Score8/10-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Executes dropped EXE
-
Modifies system executable filetype association
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2Active Setup
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1