General
-
Target
3c948a7071647b71d717e58ea4e9edd3_JaffaCakes118
-
Size
683KB
-
Sample
240712-jwhyzsxcme
-
MD5
3c948a7071647b71d717e58ea4e9edd3
-
SHA1
0a78c16486a05ce4de96e8f68af91d9697917c03
-
SHA256
ae12cfbdf3e881568ea3eb20c73eb591444025790130bae15da3493118d0c7a7
-
SHA512
8ce4a4cfbd08597fc5593f7547b712798164f76f48c3a8e773c5392d2c7644b0d9dca88940f0014004cf28de0d98661d833f7bcad5b0fa7d90122a205477e157
-
SSDEEP
12288:UsA1mIRjZp9IyTFCMXSWEOIsgsg+8nS+K7u4xkCEPk9VPIM2ilbByvSXB+5Z+:UsnIPp9IyTFC00OIswnS+6u4xtyk9VPZ
Malware Config
Targets
-
-
Target
3c948a7071647b71d717e58ea4e9edd3_JaffaCakes118
-
Size
683KB
-
MD5
3c948a7071647b71d717e58ea4e9edd3
-
SHA1
0a78c16486a05ce4de96e8f68af91d9697917c03
-
SHA256
ae12cfbdf3e881568ea3eb20c73eb591444025790130bae15da3493118d0c7a7
-
SHA512
8ce4a4cfbd08597fc5593f7547b712798164f76f48c3a8e773c5392d2c7644b0d9dca88940f0014004cf28de0d98661d833f7bcad5b0fa7d90122a205477e157
-
SSDEEP
12288:UsA1mIRjZp9IyTFCMXSWEOIsgsg+8nS+K7u4xkCEPk9VPIM2ilbByvSXB+5Z+:UsnIPp9IyTFC00OIswnS+6u4xtyk9VPZ
Score8/10-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Executes dropped EXE
-
Modifies system executable filetype association
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2Active Setup
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1