0f7e0835ded73f8e7a147ea95a8a04b84231d38dee00271b091245355f9b1009 | Triage

Sharing

General

Target

463d801343bb2d0e04dbf28fe6927962_JaffaCakes118
Size

28KB
Sample

240714-ry7n5avapk
MD5

463d801343bb2d0e04dbf28fe6927962
SHA1

df97c82d8cedf6c264ea354df8b33ba135b94037
SHA256

0f7e0835ded73f8e7a147ea95a8a04b84231d38dee00271b091245355f9b1009
SHA512

ffe8faead422a49756878676158f41921032d1d62053ef4e81f17ad0af1720a354d1cf58f3a35a3539aa587088eb6b54e1eb79600b177805501bb457a8a58585
SSDEEP

384:QVPOXUvOXjzIStY5kR0ZBjBNp0WW7jS5m9QgV6nmNGw0Fi6m5O8bQrBHNW:5XUWXBaCQFx05WEanm4w75lbQu

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  463d801343bb2d0e04dbf28fe6927962_JaffaCakes118
- Size
  
  28KB
- MD5
  
  463d801343bb2d0e04dbf28fe6927962
- SHA1
  
  df97c82d8cedf6c264ea354df8b33ba135b94037
- SHA256
  
  0f7e0835ded73f8e7a147ea95a8a04b84231d38dee00271b091245355f9b1009
- SHA512
  
  ffe8faead422a49756878676158f41921032d1d62053ef4e81f17ad0af1720a354d1cf58f3a35a3539aa587088eb6b54e1eb79600b177805501bb457a8a58585
- SSDEEP
  
  384:QVPOXUvOXjzIStY5kR0ZBjBNp0WW7jS5m9QgV6nmNGw0Fi6m5O8bQrBHNW:5XUWXBaCQFx05WEanm4w75lbQu
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2