3ea5b2fb51932a726b871ed563838efd68ab10cd3f7cb61b9278a36b086aed05 | Triage

Sharing

General

Target

752b12cce32ab10b499452cc8a4ccaf2_JaffaCakes118
Size

43KB
Sample

240726-wv54cawbqr
MD5

752b12cce32ab10b499452cc8a4ccaf2
SHA1

33ff61379a277bef7ef67c87a01b3a636731dcf0
SHA256

3ea5b2fb51932a726b871ed563838efd68ab10cd3f7cb61b9278a36b086aed05
SHA512

79fdcd2dba9a96df24c48ed0d1e8bd0285aa7b1fec210a543c4a5c3e3e01715ddb29674f882de035ed45ff79ee99227a1020893b9975b475767d69503e4e79c7
SSDEEP

768:hdLaUqmgbQgwgGtqINtN1u6RgJBh9Ez9+jlzf1IknbAiLALtR+4lWtNt479k2Sa:/OUqNQXIId0JJCz9TkbAmARDWe7W2Sa

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  752b12cce32ab10b499452cc8a4ccaf2_JaffaCakes118
- Size
  
  43KB
- MD5
  
  752b12cce32ab10b499452cc8a4ccaf2
- SHA1
  
  33ff61379a277bef7ef67c87a01b3a636731dcf0
- SHA256
  
  3ea5b2fb51932a726b871ed563838efd68ab10cd3f7cb61b9278a36b086aed05
- SHA512
  
  79fdcd2dba9a96df24c48ed0d1e8bd0285aa7b1fec210a543c4a5c3e3e01715ddb29674f882de035ed45ff79ee99227a1020893b9975b475767d69503e4e79c7
- SSDEEP
  
  768:hdLaUqmgbQgwgGtqINtN1u6RgJBh9Ez9+jlzf1IknbAiLALtR+4lWtNt479k2Sa:/OUqNQXIId0JJCz9TkbAmARDWe7W2Sa
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence