12abeb063e8973620bfd0ae5eefb0bda9d9312767ded53700f5a0966c31da344 | Triage

Sharing

General

Target

3c9f403f41b474cd11d064d800ba5a03_JaffaCakes118
Size

1.4MB
Sample

240712-j5238avgpn
MD5

3c9f403f41b474cd11d064d800ba5a03
SHA1

96c21bb3b132ea361cefb0caa829717ca2bb6ab5
SHA256

12abeb063e8973620bfd0ae5eefb0bda9d9312767ded53700f5a0966c31da344
SHA512

4f86788698968c9e98b7d7a541967cc3032ab23a9c2219ed91b6795ea07c6c69a1ec5eef12a619c206114ed8ec8534ca94dfc7d7819d257879143fb79fe873ea
SSDEEP

24576:nQa++9dINglZf00HxxWmQ1HEr/0CKvRQbRYA7LZ4KU8Q8p8hw2rNQE3AoWzajoiF:H9/Wkr0C+GVniSENQ6Ahzmoi9ez8

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  3c9f403f41b474cd11d064d800ba5a03_JaffaCakes118
- Size
  
  1.4MB
- MD5
  
  3c9f403f41b474cd11d064d800ba5a03
- SHA1
  
  96c21bb3b132ea361cefb0caa829717ca2bb6ab5
- SHA256
  
  12abeb063e8973620bfd0ae5eefb0bda9d9312767ded53700f5a0966c31da344
- SHA512
  
  4f86788698968c9e98b7d7a541967cc3032ab23a9c2219ed91b6795ea07c6c69a1ec5eef12a619c206114ed8ec8534ca94dfc7d7819d257879143fb79fe873ea
- SSDEEP
  
  24576:nQa++9dINglZf00HxxWmQ1HEr/0CKvRQbRYA7LZ4KU8Q8p8hw2rNQE3AoWzajoiF:H9/Wkr0C+GVniSENQ6Ahzmoi9ez8
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2