baca50c02efee180dd4c27a9eccf6be10f58fe3d55ca490a96aa8ea97a7ec593 | Triage

Sharing

General

Target

70430220573095ab3aa480975f9018a6_JaffaCakes118
Size

330KB
Sample

240725-td8rsssckf
MD5

70430220573095ab3aa480975f9018a6
SHA1

869a7386fbb6bf4e58d95811f73b00841bc32028
SHA256

baca50c02efee180dd4c27a9eccf6be10f58fe3d55ca490a96aa8ea97a7ec593
SHA512

0538795ce2a2392d07ff427d83e6a90e24c341c536f890f635a685e25f682187843bb7495ec346153de8adba1566fbcc12db3751b520a03fa664f141fc91c52b
SSDEEP

6144:SrMiYNJADIe8XbEwx7e9wcNbR4CjuTBXl7wAORuO8AF89Vfw:ZikJAUXFM9wcN2TRl7w2d

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  70430220573095ab3aa480975f9018a6_JaffaCakes118
- Size
  
  330KB
- MD5
  
  70430220573095ab3aa480975f9018a6
- SHA1
  
  869a7386fbb6bf4e58d95811f73b00841bc32028
- SHA256
  
  baca50c02efee180dd4c27a9eccf6be10f58fe3d55ca490a96aa8ea97a7ec593
- SHA512
  
  0538795ce2a2392d07ff427d83e6a90e24c341c536f890f635a685e25f682187843bb7495ec346153de8adba1566fbcc12db3751b520a03fa664f141fc91c52b
- SSDEEP
  
  6144:SrMiYNJADIe8XbEwx7e9wcNbR4CjuTBXl7wAORuO8AF89Vfw:ZikJAUXFM9wcN2TRl7w2d
Score

10^/10

discovery persistence
- Modifies WinLogon for persistence
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence