6fc9d467ed730407565846a924c0cdbd46780cec38c776cd489e7566171d5dfb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

86065d37a194539d8d487545e3981134_JaffaCakes118
Size

92KB
Sample

240810-pgvxwstapd
MD5

86065d37a194539d8d487545e3981134
SHA1

41393f000d36e4390ec847eef5d34909488785e3
SHA256

6fc9d467ed730407565846a924c0cdbd46780cec38c776cd489e7566171d5dfb
SHA512

9063eb8ba920988eedd0997a556e19e4c209c86237453273b0cb542c5c79242d4e8abcc4c0c04a0eb4597c618c24fdac1cdf168947fb8a071e5cdcddb4fab20b
SSDEEP

1536:zG+A5AcaHbFOt3+i1Bq40d0p9sr8CIQ5D87kD5c4iB0I0gjptBCIeX3zMw:C+uAnHJ83fDb9sQC94z4QmnzMw

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  86065d37a194539d8d487545e3981134_JaffaCakes118
- Size
  
  92KB
- MD5
  
  86065d37a194539d8d487545e3981134
- SHA1
  
  41393f000d36e4390ec847eef5d34909488785e3
- SHA256
  
  6fc9d467ed730407565846a924c0cdbd46780cec38c776cd489e7566171d5dfb
- SHA512
  
  9063eb8ba920988eedd0997a556e19e4c209c86237453273b0cb542c5c79242d4e8abcc4c0c04a0eb4597c618c24fdac1cdf168947fb8a071e5cdcddb4fab20b
- SSDEEP
  
  1536:zG+A5AcaHbFOt3+i1Bq40d0p9sr8CIQ5D87kD5c4iB0I0gjptBCIeX3zMw:C+uAnHJ83fDb9sQC94z4QmnzMw
Score

7^/10

discovery persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence