87e04ae1125f03018d90b29a1a45ce575dd443077c58684de8ce9a8c00edc7d1 | Triage

Sharing

General

Target

8bb9975c88efabd2bae276ca20b72ab8_JaffaCakes118
Size

1.0MB
Sample

240811-yjtbhsvdnn
MD5

8bb9975c88efabd2bae276ca20b72ab8
SHA1

fbc6e7dd269d276a5be8a9c774507fdefdde13fe
SHA256

87e04ae1125f03018d90b29a1a45ce575dd443077c58684de8ce9a8c00edc7d1
SHA512

f66bcd1681cc28aa23bf9176b3f14359d06e94e649df1d03241244cc7e8494393581283f7d1aab4e599a1e33ee696a3f50b1993757105a5f8e3841b6ae44926c
SSDEEP

24576:UnRNLxW1x5R4wJGJ1KOvoeW2uN5q/7mDVNnxQr8WMwt6:CU35kw/I/7K67

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  8bb9975c88efabd2bae276ca20b72ab8_JaffaCakes118
- Size
  
  1.0MB
- MD5
  
  8bb9975c88efabd2bae276ca20b72ab8
- SHA1
  
  fbc6e7dd269d276a5be8a9c774507fdefdde13fe
- SHA256
  
  87e04ae1125f03018d90b29a1a45ce575dd443077c58684de8ce9a8c00edc7d1
- SHA512
  
  f66bcd1681cc28aa23bf9176b3f14359d06e94e649df1d03241244cc7e8494393581283f7d1aab4e599a1e33ee696a3f50b1993757105a5f8e3841b6ae44926c
- SSDEEP
  
  24576:UnRNLxW1x5R4wJGJ1KOvoeW2uN5q/7mDVNnxQr8WMwt6:CU35kw/I/7K67
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2