bb84ae725515d01a862e6e852bd5b79318510b6c881fd9a6365ce90397727296 | Triage

Sharing

General

Target

327f15040a2109fbb2dc012d18c506f8_JaffaCakes118
Size

208KB
Sample

240709-3v4c3stcjn
MD5

327f15040a2109fbb2dc012d18c506f8
SHA1

3cd2abf2f1b74e5e12d1370bca8931649fecd542
SHA256

bb84ae725515d01a862e6e852bd5b79318510b6c881fd9a6365ce90397727296
SHA512

f6741890a0bde49b75ed8881e203ff2b7e03f1746895791a1a24a77172ff2023c5433f18d5ba00dd1721b1480f08995773ce957d8208131de96f269a120623c3
SSDEEP

6144:epvHL2maHtYVoMnTNwXj+e1aOW+3nuurFBV027h:epPdT493uWFL

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  327f15040a2109fbb2dc012d18c506f8_JaffaCakes118
- Size
  
  208KB
- MD5
  
  327f15040a2109fbb2dc012d18c506f8
- SHA1
  
  3cd2abf2f1b74e5e12d1370bca8931649fecd542
- SHA256
  
  bb84ae725515d01a862e6e852bd5b79318510b6c881fd9a6365ce90397727296
- SHA512
  
  f6741890a0bde49b75ed8881e203ff2b7e03f1746895791a1a24a77172ff2023c5433f18d5ba00dd1721b1480f08995773ce957d8208131de96f269a120623c3
- SSDEEP
  
  6144:epvHL2maHtYVoMnTNwXj+e1aOW+3nuurFBV027h:epPdT493uWFL
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2