0d39d1d847ecb9f81d0e22d1ca2974543c718ee98a1f7134ae13b33cba24797e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

76b68d206a2bcd9336f95719b77bd4db_JaffaCakes118
Size

47KB
Sample

240727-cxd8vsthqg
MD5

76b68d206a2bcd9336f95719b77bd4db
SHA1

73dae38443aa9fb3ba322db8d10e07ee2570bce5
SHA256

0d39d1d847ecb9f81d0e22d1ca2974543c718ee98a1f7134ae13b33cba24797e
SHA512

3934db40c9c5c753b79d6a77398b570a228cf701fe25e76565e278951d27c1b0f7b54b9ec4e8253810517bd152acb5684cdd98b5de556113d20e01ab48cb3683
SSDEEP

192:9Sa8tcaAWyRxmxLjOB2Gth7gwGaHyM2EYHes/6Xh0YZQoRv5ZT3aXSJKi:9MOWy/mxLSnh71GPEUeCYh3Zrn93aXe

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  76b68d206a2bcd9336f95719b77bd4db_JaffaCakes118
- Size
  
  47KB
- MD5
  
  76b68d206a2bcd9336f95719b77bd4db
- SHA1
  
  73dae38443aa9fb3ba322db8d10e07ee2570bce5
- SHA256
  
  0d39d1d847ecb9f81d0e22d1ca2974543c718ee98a1f7134ae13b33cba24797e
- SHA512
  
  3934db40c9c5c753b79d6a77398b570a228cf701fe25e76565e278951d27c1b0f7b54b9ec4e8253810517bd152acb5684cdd98b5de556113d20e01ab48cb3683
- SSDEEP
  
  192:9Sa8tcaAWyRxmxLjOB2Gth7gwGaHyM2EYHes/6Xh0YZQoRv5ZT3aXSJKi:9MOWy/mxLSnh71GPEUeCYh3Zrn93aXe
Score

6^/10

persistence discovery
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence