f97a5febf48a65ba561915fcf6f27f2edf8615fdfaf54a2f5266586f71cf3b41 | Triage

Sharing

General

Target

69fd1ae52431213c675d5464ce4ff85e_JaffaCakes118
Size

40KB
Sample

240724-dcm6psxdqa
MD5

69fd1ae52431213c675d5464ce4ff85e
SHA1

a937ed725161db1ee0d90489d98e202d4a94fb27
SHA256

f97a5febf48a65ba561915fcf6f27f2edf8615fdfaf54a2f5266586f71cf3b41
SHA512

53b804acc57c77e3a2db3f98f565bcd977e8ea3a97cfda16047bc6cbe83b1fdee9c1f9dc1054bd60cfaa30d73ac61c3563858f1cb6bf63112f45638a3f54b163
SSDEEP

768:HOvovookAXFCfNrXXVpfn3nsyNIADEO6Gu4thgDMJ/xD2reWHItC0qkedt:HOvovoyo3BlaADTu4jPJ/P8Tv

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  69fd1ae52431213c675d5464ce4ff85e_JaffaCakes118
- Size
  
  40KB
- MD5
  
  69fd1ae52431213c675d5464ce4ff85e
- SHA1
  
  a937ed725161db1ee0d90489d98e202d4a94fb27
- SHA256
  
  f97a5febf48a65ba561915fcf6f27f2edf8615fdfaf54a2f5266586f71cf3b41
- SHA512
  
  53b804acc57c77e3a2db3f98f565bcd977e8ea3a97cfda16047bc6cbe83b1fdee9c1f9dc1054bd60cfaa30d73ac61c3563858f1cb6bf63112f45638a3f54b163
- SSDEEP
  
  768:HOvovookAXFCfNrXXVpfn3nsyNIADEO6Gu4thgDMJ/xD2reWHItC0qkedt:HOvovoyo3BlaADTu4jPJ/P8Tv
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2