a33c631b2979d93b0f33cbc0723f873d52fb7caf41c3b5eb525e2e547af10d6e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

74e38f84809dd7f3696f7c3aadc6489e_JaffaCakes118
Size

178KB
Sample

240726-vahxmszfnq
MD5

74e38f84809dd7f3696f7c3aadc6489e
SHA1

046e6e1c3a940f7be85624cab4e37610760fa9a7
SHA256

a33c631b2979d93b0f33cbc0723f873d52fb7caf41c3b5eb525e2e547af10d6e
SHA512

1380beda9d9827818baf1949c93e8cf5bd9fcafe8b395855337aaa665fe71090eec004db61537c6ef2b8dc785268d15ef332468bd781f5e5cad0541badfb8dea
SSDEEP

3072:u0Gox2PD7tC6PN1k/WqGIvMEhc+5n6CdJK8GcBHNmjoH90DGzhQ:6ogP6WqGU/n6CbzGcBIMHIGl

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  74e38f84809dd7f3696f7c3aadc6489e_JaffaCakes118
- Size
  
  178KB
- MD5
  
  74e38f84809dd7f3696f7c3aadc6489e
- SHA1
  
  046e6e1c3a940f7be85624cab4e37610760fa9a7
- SHA256
  
  a33c631b2979d93b0f33cbc0723f873d52fb7caf41c3b5eb525e2e547af10d6e
- SHA512
  
  1380beda9d9827818baf1949c93e8cf5bd9fcafe8b395855337aaa665fe71090eec004db61537c6ef2b8dc785268d15ef332468bd781f5e5cad0541badfb8dea
- SSDEEP
  
  3072:u0Gox2PD7tC6PN1k/WqGIvMEhc+5n6CdJK8GcBHNmjoH90DGzhQ:6ogP6WqGU/n6CbzGcBIMHIGl
Score

7^/10

discovery persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2