General
-
Target
46ee2038bb14f157ae0925d29bfa7e40_JaffaCakes118
-
Size
340KB
-
Sample
240714-wqpwkatgnh
-
MD5
46ee2038bb14f157ae0925d29bfa7e40
-
SHA1
dd7f38f987be04df6efe4e7eb782fffbd5ad9ad5
-
SHA256
fcf458b055cd7f5fd863bce17ea9168d30de4488ebe70ec1abe58b736fe8bf69
-
SHA512
741a19a1dffd5ff20474e8d5314fe9a50ed24e3433c2145c7b66b0b6d39a91c72ec95b885b33970d456bf4d910a1d59d0bb1f21bbcd35c6464cf6c486f1d6688
-
SSDEEP
6144:MRAhhJxX7bNIAROzTua3Wx3uz5ffSxuZIl0th3b2s7fxYREM8rMSLqzggIP:UsAAPaieF3qucghr24XM8IFzgH
Malware Config
Targets
-
-
Target
46ee2038bb14f157ae0925d29bfa7e40_JaffaCakes118
-
Size
340KB
-
MD5
46ee2038bb14f157ae0925d29bfa7e40
-
SHA1
dd7f38f987be04df6efe4e7eb782fffbd5ad9ad5
-
SHA256
fcf458b055cd7f5fd863bce17ea9168d30de4488ebe70ec1abe58b736fe8bf69
-
SHA512
741a19a1dffd5ff20474e8d5314fe9a50ed24e3433c2145c7b66b0b6d39a91c72ec95b885b33970d456bf4d910a1d59d0bb1f21bbcd35c6464cf6c486f1d6688
-
SSDEEP
6144:MRAhhJxX7bNIAROzTua3Wx3uz5ffSxuZIl0th3b2s7fxYREM8rMSLqzggIP:UsAAPaieF3qucghr24XM8IFzgH
Score8/10-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Executes dropped EXE
-
Modifies system executable filetype association
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2Active Setup
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1