991118a49283c5243b43c2742c6b3542657f3ad05bd6de9c7ad0dca490b3e373 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e80e36b229cfec3ba98bfbd05efec06_JaffaCakes118
Size

276KB
Sample

240709-bnxs6s1dre
MD5

2e80e36b229cfec3ba98bfbd05efec06
SHA1

9575256c56eddcc379a5a31707a1b6a8753ba764
SHA256

991118a49283c5243b43c2742c6b3542657f3ad05bd6de9c7ad0dca490b3e373
SHA512

6d541e154aa78e8e02c344f70acedc06730935568f849f53124a273d9a0a6754c80ae50b4b8fdf3a8b8595f1b44edc4bd27e3ed667ca84e139945fd6052764cb
SSDEEP

6144:r5ROjhJJ2Pg3Wwqe5vT2dGCjh2vtBv3FQ:rzUzugmwFt2dGCjIv3

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  2e80e36b229cfec3ba98bfbd05efec06_JaffaCakes118
- Size
  
  276KB
- MD5
  
  2e80e36b229cfec3ba98bfbd05efec06
- SHA1
  
  9575256c56eddcc379a5a31707a1b6a8753ba764
- SHA256
  
  991118a49283c5243b43c2742c6b3542657f3ad05bd6de9c7ad0dca490b3e373
- SHA512
  
  6d541e154aa78e8e02c344f70acedc06730935568f849f53124a273d9a0a6754c80ae50b4b8fdf3a8b8595f1b44edc4bd27e3ed667ca84e139945fd6052764cb
- SSDEEP
  
  6144:r5ROjhJJ2Pg3Wwqe5vT2dGCjh2vtBv3FQ:rzUzugmwFt2dGCjIv3
Score

8^/10

persistence
- Drops file in Drivers directory
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2