af29c5339b066faf117e32aa5f5a52b48bc69ccac30d9ed87ef53743cd2b1bc7 | Triage

Sharing

General

Target

890b13ebb91aaf458178c1efc3adaea1_JaffaCakes118
Size

41KB
Sample

240811-fdstpawaqq
MD5

890b13ebb91aaf458178c1efc3adaea1
SHA1

2ea3439de0084f074d5e0718b42fd1efb4c45344
SHA256

af29c5339b066faf117e32aa5f5a52b48bc69ccac30d9ed87ef53743cd2b1bc7
SHA512

69a7df0b5bd68477dc881cc20b6591e3522be2ae4b50327081875e6abb95c6faa39ad533fa1a5e1154283689b214a7b4644d886244ec0efcc27b92026ec704fa
SSDEEP

768:PXcFKp214JUj9D/LIrslQCjLizC455MyXr89sqqA+Cz+KUH756qi:PXPJyD/LIdXoyXrAsqqA33oi

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  890b13ebb91aaf458178c1efc3adaea1_JaffaCakes118
- Size
  
  41KB
- MD5
  
  890b13ebb91aaf458178c1efc3adaea1
- SHA1
  
  2ea3439de0084f074d5e0718b42fd1efb4c45344
- SHA256
  
  af29c5339b066faf117e32aa5f5a52b48bc69ccac30d9ed87ef53743cd2b1bc7
- SHA512
  
  69a7df0b5bd68477dc881cc20b6591e3522be2ae4b50327081875e6abb95c6faa39ad533fa1a5e1154283689b214a7b4644d886244ec0efcc27b92026ec704fa
- SSDEEP
  
  768:PXcFKp214JUj9D/LIrslQCjLizC455MyXr89sqqA+Cz+KUH756qi:PXPJyD/LIdXoyXrAsqqA33oi
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2