General
-
Target
4d5f1fc945445c241a22cdb02f869c54_JaffaCakes118
-
Size
726KB
-
Sample
240716-jhqfxa1fkp
-
MD5
4d5f1fc945445c241a22cdb02f869c54
-
SHA1
68aa9ed5e5270cd1094eb9cf53f2b710a073ba53
-
SHA256
61a291883ef53c523acade8def09d6522bf03d515da0374ff5aaac90d0869f6a
-
SHA512
800b204771ae30db8bb961e98b3a708768f98c26058b3238a764585e94dc927a77f1dab25112a97f5374f940fc207251bf840e77e18899244f4ca43184807a1e
-
SSDEEP
12288:UsA1mIRjZp9IyTFCMXSWEOIsgsg+8nS+K7u4k6uNZQVuFO/6Qw7x5lZYBVVhjg:UsnIPp9IyTFC00OIswnS+6u4ktbvrqTs
Malware Config
Targets
-
-
Target
4d5f1fc945445c241a22cdb02f869c54_JaffaCakes118
-
Size
726KB
-
MD5
4d5f1fc945445c241a22cdb02f869c54
-
SHA1
68aa9ed5e5270cd1094eb9cf53f2b710a073ba53
-
SHA256
61a291883ef53c523acade8def09d6522bf03d515da0374ff5aaac90d0869f6a
-
SHA512
800b204771ae30db8bb961e98b3a708768f98c26058b3238a764585e94dc927a77f1dab25112a97f5374f940fc207251bf840e77e18899244f4ca43184807a1e
-
SSDEEP
12288:UsA1mIRjZp9IyTFCMXSWEOIsgsg+8nS+K7u4k6uNZQVuFO/6Qw7x5lZYBVVhjg:UsnIPp9IyTFC00OIswnS+6u4ktbvrqTs
Score8/10-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Executes dropped EXE
-
Modifies system executable filetype association
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2Active Setup
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1