General
-
Target
48b341eaa4f87dfe08c4f01e230d77b6_JaffaCakes118
-
Size
362KB
-
Sample
240715-hqt9dstejp
-
MD5
48b341eaa4f87dfe08c4f01e230d77b6
-
SHA1
b62446ae6c25272c8eb2ac7c5f31934d9f47013a
-
SHA256
f752ccf8b338507d86418d02e9991d6843c615d1101373a1fdae5cf0eb04a3e1
-
SHA512
7aa93627b64f31bfe6ff70d666de4554cb8f7b9d2a4da449fcacbc6969d5d9d2d735157e62f9113f7f16193fcb7dd3ff4ea85961af7d781720dde3aa2982e971
-
SSDEEP
6144:MRAhhJxX7bNIKTQ/ary2LrjSbFdSCZJGMhVzFH9gjm2sy85GhV59K/yMFm/T:UsAL/W5L/SZdSCvTFH9gfRhVjMeT
Malware Config
Targets
-
-
Target
48b341eaa4f87dfe08c4f01e230d77b6_JaffaCakes118
-
Size
362KB
-
MD5
48b341eaa4f87dfe08c4f01e230d77b6
-
SHA1
b62446ae6c25272c8eb2ac7c5f31934d9f47013a
-
SHA256
f752ccf8b338507d86418d02e9991d6843c615d1101373a1fdae5cf0eb04a3e1
-
SHA512
7aa93627b64f31bfe6ff70d666de4554cb8f7b9d2a4da449fcacbc6969d5d9d2d735157e62f9113f7f16193fcb7dd3ff4ea85961af7d781720dde3aa2982e971
-
SSDEEP
6144:MRAhhJxX7bNIKTQ/ary2LrjSbFdSCZJGMhVzFH9gjm2sy85GhV59K/yMFm/T:UsAL/W5L/SZdSCvTFH9gfRhVjMeT
Score8/10-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Executes dropped EXE
-
Modifies system executable filetype association
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2Active Setup
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1