47bf70a9a7b5799a8763fbc9941fee8fc785a9b84567f9834df8153e53a76eaf | Triage

Sharing

General

Target

a35e2d30db8c6f69798ed3ebd78a60e5_JaffaCakes118
Size

178KB
Sample

240817-vf5ctswdrd
MD5

a35e2d30db8c6f69798ed3ebd78a60e5
SHA1

d8d814b892d58f2ec58e343d570cbc3f8808b5d9
SHA256

47bf70a9a7b5799a8763fbc9941fee8fc785a9b84567f9834df8153e53a76eaf
SHA512

ae36eb90d40df2b69dcdb98d8309f3286edde91b1652fa4db730d87b8914ef527a4de69a9d59caf9669d4d0e486e942747644a8f82038872c089329576b75ded
SSDEEP

3072:u0Gox2PD7tC6PNMk/WqGIvMEhc+5n6CdJK8GcBHNmjoH90DGzhQ:6ogPJWqGU/n6CbzGcBIMHIGl

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  a35e2d30db8c6f69798ed3ebd78a60e5_JaffaCakes118
- Size
  
  178KB
- MD5
  
  a35e2d30db8c6f69798ed3ebd78a60e5
- SHA1
  
  d8d814b892d58f2ec58e343d570cbc3f8808b5d9
- SHA256
  
  47bf70a9a7b5799a8763fbc9941fee8fc785a9b84567f9834df8153e53a76eaf
- SHA512
  
  ae36eb90d40df2b69dcdb98d8309f3286edde91b1652fa4db730d87b8914ef527a4de69a9d59caf9669d4d0e486e942747644a8f82038872c089329576b75ded
- SSDEEP
  
  3072:u0Gox2PD7tC6PNMk/WqGIvMEhc+5n6CdJK8GcBHNmjoH90DGzhQ:6ogPJWqGU/n6CbzGcBIMHIGl
Score

7^/10

discovery persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2