df1f3d4b2ee880a2583b7978b0822bd86cc42630e37f46bf92f0714bf823468a | Triage

Sharing

General

Target

4844e31bc9b23184ea5fd17d754c1d6e_JaffaCakes118
Size

152KB
Sample

240715-fc1sxaycnk
MD5

4844e31bc9b23184ea5fd17d754c1d6e
SHA1

f6b0f1a09f86d5182f56492ced8408d77319f527
SHA256

df1f3d4b2ee880a2583b7978b0822bd86cc42630e37f46bf92f0714bf823468a
SHA512

66bdf1edd1e5b449d6b125c55eff125249bb649a6d9f7bd2c42a8d7abb66808d02db630cc93928dd9d2ea62747fbfcc92bdf4e8e15af8be80352476db85f4d5f
SSDEEP

3072:WwvABXg9xgPsdRXqXgmltJsv6LACOsZV3mH8blHy78pieHbNUuAQzPtyMal:D4xKfdRawysv6Eg3myl88L7GuAQTYMq

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  4844e31bc9b23184ea5fd17d754c1d6e_JaffaCakes118
- Size
  
  152KB
- MD5
  
  4844e31bc9b23184ea5fd17d754c1d6e
- SHA1
  
  f6b0f1a09f86d5182f56492ced8408d77319f527
- SHA256
  
  df1f3d4b2ee880a2583b7978b0822bd86cc42630e37f46bf92f0714bf823468a
- SHA512
  
  66bdf1edd1e5b449d6b125c55eff125249bb649a6d9f7bd2c42a8d7abb66808d02db630cc93928dd9d2ea62747fbfcc92bdf4e8e15af8be80352476db85f4d5f
- SSDEEP
  
  3072:WwvABXg9xgPsdRXqXgmltJsv6LACOsZV3mH8blHy78pieHbNUuAQzPtyMal:D4xKfdRawysv6Eg3myl88L7GuAQTYMq
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2