1aec7a62f28cb6a9d3e108642eaee263906089d7ae16ba87f44aedaa2c851069 | Triage

Sharing

General

Target

775ac7aa7d9dfc24bbcb6f46251534c2_JaffaCakes118
Size

4.9MB
Sample

240727-h69c9atgmp
MD5

775ac7aa7d9dfc24bbcb6f46251534c2
SHA1

461b388dd30d14bbc11181fb20fe56d17ad3f210
SHA256

1aec7a62f28cb6a9d3e108642eaee263906089d7ae16ba87f44aedaa2c851069
SHA512

ea22e0c599521015d763b2d39feaecc541eea2e83d5505e5a1acfae109f3bf3eb270b634aa2a2270cd5aedf34ea5a6356fb8faf674985900f2411bfed2eae6f3
SSDEEP

98304:Fg1BBBBBBBcBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBP:F

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  775ac7aa7d9dfc24bbcb6f46251534c2_JaffaCakes118
- Size
  
  4.9MB
- MD5
  
  775ac7aa7d9dfc24bbcb6f46251534c2
- SHA1
  
  461b388dd30d14bbc11181fb20fe56d17ad3f210
- SHA256
  
  1aec7a62f28cb6a9d3e108642eaee263906089d7ae16ba87f44aedaa2c851069
- SHA512
  
  ea22e0c599521015d763b2d39feaecc541eea2e83d5505e5a1acfae109f3bf3eb270b634aa2a2270cd5aedf34ea5a6356fb8faf674985900f2411bfed2eae6f3
- SSDEEP
  
  98304:Fg1BBBBBBBcBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBP:F
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence