de46b5d38cda9fb4de5748ffa8d513dbe0c4d62542721ddea39a0da150144a85 | Triage

Sharing

General

Target

3afa861860435890ed137d8e4606ab2a_JaffaCakes118
Size

600KB
Sample

240711-2glenszbnc
MD5

3afa861860435890ed137d8e4606ab2a
SHA1

4452d86936d829edd028f9f71a031b251dd4c528
SHA256

de46b5d38cda9fb4de5748ffa8d513dbe0c4d62542721ddea39a0da150144a85
SHA512

e9780100d87f17f08c915aa6f4416f9525bef9495e7b493d4b56c452763d846c4c5f4e0e2557dd218147582f38f714163f6965fa252fb3f8a060b9c785a6b53b
SSDEEP

6144:MeoRPRkg4euE3bLwa6sTRXtiyiMAhBcrtPDJFA9eUP3GPf/1qZ5kZoR:MtRmsYER9LVAortPDJVUP3MnmR

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  3afa861860435890ed137d8e4606ab2a_JaffaCakes118
- Size
  
  600KB
- MD5
  
  3afa861860435890ed137d8e4606ab2a
- SHA1
  
  4452d86936d829edd028f9f71a031b251dd4c528
- SHA256
  
  de46b5d38cda9fb4de5748ffa8d513dbe0c4d62542721ddea39a0da150144a85
- SHA512
  
  e9780100d87f17f08c915aa6f4416f9525bef9495e7b493d4b56c452763d846c4c5f4e0e2557dd218147582f38f714163f6965fa252fb3f8a060b9c785a6b53b
- SSDEEP
  
  6144:MeoRPRkg4euE3bLwa6sTRXtiyiMAhBcrtPDJFA9eUP3GPf/1qZ5kZoR:MtRmsYER9LVAortPDJVUP3MnmR
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2