5e4723a387a517a0af0de984a18517488569c0c6a41640e8f8ef0c479da80fb4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

667f7e0606711c9c5947dfe7b6f8bb87_JaffaCakes118
Size

92KB
Sample

240723-hcl1vssbra
MD5

667f7e0606711c9c5947dfe7b6f8bb87
SHA1

a722340f169b98e100f38e8e9291e93bd8a61ff8
SHA256

5e4723a387a517a0af0de984a18517488569c0c6a41640e8f8ef0c479da80fb4
SHA512

6a42e750d9cb299c2a2090c198ec5b305f310a883a22dd39481204ea45c23f5750372d7e5992e0be7cc0a1a668bacde5a7d0ca48dd898dec48125c36f2774664
SSDEEP

1536:w40GZdRhifPPNha2lg38YdjhnW4U4qRjKm5j5mUhRR:H5vsTlg9dFnW4hqRj9OoR

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  667f7e0606711c9c5947dfe7b6f8bb87_JaffaCakes118
- Size
  
  92KB
- MD5
  
  667f7e0606711c9c5947dfe7b6f8bb87
- SHA1
  
  a722340f169b98e100f38e8e9291e93bd8a61ff8
- SHA256
  
  5e4723a387a517a0af0de984a18517488569c0c6a41640e8f8ef0c479da80fb4
- SHA512
  
  6a42e750d9cb299c2a2090c198ec5b305f310a883a22dd39481204ea45c23f5750372d7e5992e0be7cc0a1a668bacde5a7d0ca48dd898dec48125c36f2774664
- SSDEEP
  
  1536:w40GZdRhifPPNha2lg38YdjhnW4U4qRjKm5j5mUhRR:H5vsTlg9dFnW4hqRj9OoR
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2