7b70dc80931d092241af09df8963e15e481ad1ee5f075dee7b75aaee03757be3 | Triage

Sharing

General

Target

644431dd1d488b6a3f50a56af74e7c10_JaffaCakes118
Size

55KB
Sample

240722-wx5wcszgrf
MD5

644431dd1d488b6a3f50a56af74e7c10
SHA1

f8a143a5dddb8b4bff8978175c989164e34571ab
SHA256

7b70dc80931d092241af09df8963e15e481ad1ee5f075dee7b75aaee03757be3
SHA512

555469a3530cdbea655770c8df0f170addc141b38f91a6cd70fe7472da11649406e10297cfa4de5d281e8fb24553ea714410f5cb5043fce7869100779cffeb75
SSDEEP

1536:Y5AB1ei02sQkgV1Fk8f4RjbR9gqerBp4jreWAaQMKW5OedB7I:cAB1eX25bQPG1p43eWgUAMB7I

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  644431dd1d488b6a3f50a56af74e7c10_JaffaCakes118
- Size
  
  55KB
- MD5
  
  644431dd1d488b6a3f50a56af74e7c10
- SHA1
  
  f8a143a5dddb8b4bff8978175c989164e34571ab
- SHA256
  
  7b70dc80931d092241af09df8963e15e481ad1ee5f075dee7b75aaee03757be3
- SHA512
  
  555469a3530cdbea655770c8df0f170addc141b38f91a6cd70fe7472da11649406e10297cfa4de5d281e8fb24553ea714410f5cb5043fce7869100779cffeb75
- SSDEEP
  
  1536:Y5AB1ei02sQkgV1Fk8f4RjbR9gqerBp4jreWAaQMKW5OedB7I:cAB1eX25bQPG1p43eWgUAMB7I
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2