3afb50a1a92952dd502e4c30a39150ccb5a026f9c2b1848b8dd2b88217b12eab | Triage

Sharing

Copy URL Twitter E-mail

General

Target

93ca67baf863b8158d03e11d67909623_JaffaCakes118
Size

97KB
Sample

240813-tjljfsxhjm
MD5

93ca67baf863b8158d03e11d67909623
SHA1

9ec7e4b12eea66c67c7e3ffc673671eb35fdc800
SHA256

3afb50a1a92952dd502e4c30a39150ccb5a026f9c2b1848b8dd2b88217b12eab
SHA512

f8e42d6ba2432d885fb68de897df9f6c6ba9256d614dda8add7e4d9ce6f5e77911d9826b1fd6892d16dd74ea04d4717274c141d1aa8fde4e289dbcceaa79946d
SSDEEP

1536:7KCYGHOZfz5m+iQuVbo7aOak/AkbC+92pkFJ7R1t/QiG4h/g9isKldh:7KhtDiXbgLLbC+qs7R1tYiGcd

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  93ca67baf863b8158d03e11d67909623_JaffaCakes118
- Size
  
  97KB
- MD5
  
  93ca67baf863b8158d03e11d67909623
- SHA1
  
  9ec7e4b12eea66c67c7e3ffc673671eb35fdc800
- SHA256
  
  3afb50a1a92952dd502e4c30a39150ccb5a026f9c2b1848b8dd2b88217b12eab
- SHA512
  
  f8e42d6ba2432d885fb68de897df9f6c6ba9256d614dda8add7e4d9ce6f5e77911d9826b1fd6892d16dd74ea04d4717274c141d1aa8fde4e289dbcceaa79946d
- SSDEEP
  
  1536:7KCYGHOZfz5m+iQuVbo7aOak/AkbC+92pkFJ7R1t/QiG4h/g9isKldh:7KhtDiXbgLLbC+qs7R1tYiGcd
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2