a1c531459fb9dc52353e35da2e60919bd5fb73e98dd17363b934e98031bf33b8 | Triage

Sharing

General

Target

692f725461522cf0323c9671bf7da782_JaffaCakes118
Size

184KB
Sample

240723-2avprssbqn
MD5

692f725461522cf0323c9671bf7da782
SHA1

0d8904db4247d3cd8a8e8d316572855f76054fa3
SHA256

a1c531459fb9dc52353e35da2e60919bd5fb73e98dd17363b934e98031bf33b8
SHA512

a09d457d7040a12ddf9bce4220e4b1ae67e38ccf01b0a27b402acde59402bafe2d21d3f81cbe1f08f678cb3a35035d8e58f4b80891baf85ca261140f0c51364a
SSDEEP

3072:PuLPt3RwVZQIvjNobkim8myMsMEpTtop58uweieaYc/tDFjJ:kPt3GJoLMvO7e5iBFJ

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  692f725461522cf0323c9671bf7da782_JaffaCakes118
- Size
  
  184KB
- MD5
  
  692f725461522cf0323c9671bf7da782
- SHA1
  
  0d8904db4247d3cd8a8e8d316572855f76054fa3
- SHA256
  
  a1c531459fb9dc52353e35da2e60919bd5fb73e98dd17363b934e98031bf33b8
- SHA512
  
  a09d457d7040a12ddf9bce4220e4b1ae67e38ccf01b0a27b402acde59402bafe2d21d3f81cbe1f08f678cb3a35035d8e58f4b80891baf85ca261140f0c51364a
- SSDEEP
  
  3072:PuLPt3RwVZQIvjNobkim8myMsMEpTtop58uweieaYc/tDFjJ:kPt3GJoLMvO7e5iBFJ
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence