43f84380a7d70f331bd9c0a936d8d0f23bc6dd3827f318781d7c7ca80c806771 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6547bfc5c5c508085089b16e9d1a022c_JaffaCakes118
Size

103KB
Sample

240722-3ppbzavdmc
MD5

6547bfc5c5c508085089b16e9d1a022c
SHA1

a80f952d1a1df1d202c5d93967116ed87d23eefd
SHA256

43f84380a7d70f331bd9c0a936d8d0f23bc6dd3827f318781d7c7ca80c806771
SHA512

e06e8156a470292917b84b6243fa07c1787900130300c4ff020378674b3b6013cc011772e869ce82df9e998537c8b5aeeeda68955f1d68c3426e4f46fd36e493
SSDEEP

1536:MR8Bftg+9t/p4QAILJuCOPdvX/ZWOtnGWxl2isKldh:pvgmJAIlwPxX/ZWOFrnd

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  6547bfc5c5c508085089b16e9d1a022c_JaffaCakes118
- Size
  
  103KB
- MD5
  
  6547bfc5c5c508085089b16e9d1a022c
- SHA1
  
  a80f952d1a1df1d202c5d93967116ed87d23eefd
- SHA256
  
  43f84380a7d70f331bd9c0a936d8d0f23bc6dd3827f318781d7c7ca80c806771
- SHA512
  
  e06e8156a470292917b84b6243fa07c1787900130300c4ff020378674b3b6013cc011772e869ce82df9e998537c8b5aeeeda68955f1d68c3426e4f46fd36e493
- SSDEEP
  
  1536:MR8Bftg+9t/p4QAILJuCOPdvX/ZWOtnGWxl2isKldh:pvgmJAIlwPxX/ZWOFrnd
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2