f4b753f5b8b475fe5be0c65e2de78325bfddfb0ecb3d8f4b76950359ce964a3d | Triage

Sharing

General

Target

871e66e84dec86a322024c965aeb45ce_JaffaCakes118
Size

7KB
Sample

240810-wtd88s1dlj
MD5

871e66e84dec86a322024c965aeb45ce
SHA1

b8a637097574ce4bd7bd63d5ad6089feec48fdda
SHA256

f4b753f5b8b475fe5be0c65e2de78325bfddfb0ecb3d8f4b76950359ce964a3d
SHA512

e03a36ddebb02dfcfeec2e55da552dfbcec28c772ad12d4a810c99b2a596dea4ce56be450a8df6088e8d3ad220633468b82405c682b8d0a6d6a01b89cefcc83a
SSDEEP

192:qKYVrU8oZ/qvZrc6+lzPELj4oNMTcWdi6CkqVGt:qRU8Gq10lzMLj4KMTJs65t

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  871e66e84dec86a322024c965aeb45ce_JaffaCakes118
- Size
  
  7KB
- MD5
  
  871e66e84dec86a322024c965aeb45ce
- SHA1
  
  b8a637097574ce4bd7bd63d5ad6089feec48fdda
- SHA256
  
  f4b753f5b8b475fe5be0c65e2de78325bfddfb0ecb3d8f4b76950359ce964a3d
- SHA512
  
  e03a36ddebb02dfcfeec2e55da552dfbcec28c772ad12d4a810c99b2a596dea4ce56be450a8df6088e8d3ad220633468b82405c682b8d0a6d6a01b89cefcc83a
- SSDEEP
  
  192:qKYVrU8oZ/qvZrc6+lzPELj4oNMTcWdi6CkqVGt:qRU8Gq10lzMLj4KMTJs65t
Score

6^/10

persistence discovery
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence