b047b2a3f0caf7e5bba025c021845f11ab0c3382aede2448822b4e30e0c9257d | Triage

Sharing

General

Target

79228a6644ba06c0944de33323d3f11f_JaffaCakes118
Size

5.9MB
Sample

240727-w3hm1swdrh
MD5

79228a6644ba06c0944de33323d3f11f
SHA1

2c16119f563ab5492dfe31f7f635bc09ec745684
SHA256

b047b2a3f0caf7e5bba025c021845f11ab0c3382aede2448822b4e30e0c9257d
SHA512

dc630c3b8248ee493dd0ec55580161ae7d6342bcb6dd4609168daefc984beb3aed430ab8a44c4a9eaa86f1f455fef3729dc433a9ccd55d49425aff191ffc6d92
SSDEEP

98304:fzjjx460j3w7/tBENqzBBEEE++CmZYOo+EEEEEEEBBBBBBmmmmmmPeXGNNNmmmmg:7fy60MINqzBBEEE++CmZYOo+EEEEEEEW

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  79228a6644ba06c0944de33323d3f11f_JaffaCakes118
- Size
  
  5.9MB
- MD5
  
  79228a6644ba06c0944de33323d3f11f
- SHA1
  
  2c16119f563ab5492dfe31f7f635bc09ec745684
- SHA256
  
  b047b2a3f0caf7e5bba025c021845f11ab0c3382aede2448822b4e30e0c9257d
- SHA512
  
  dc630c3b8248ee493dd0ec55580161ae7d6342bcb6dd4609168daefc984beb3aed430ab8a44c4a9eaa86f1f455fef3729dc433a9ccd55d49425aff191ffc6d92
- SSDEEP
  
  98304:fzjjx460j3w7/tBENqzBBEEE++CmZYOo+EEEEEEEBBBBBBmmmmmmPeXGNNNmmmmg:7fy60MINqzBBEEE++CmZYOo+EEEEEEEW
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence