d7ffc1c1bb20d153caf4015d409ca6cb0ef9a5983c5831e000270185bfbd50e5 | Triage

Sharing

General

Target

a389b2fa27ef8c2518cba0e99a909ab5_JaffaCakes118
Size

419KB
Sample

240817-wf55ss1fnk
MD5

a389b2fa27ef8c2518cba0e99a909ab5
SHA1

04edd77b695a7565bbe52f3fbbd8be6f7797264b
SHA256

d7ffc1c1bb20d153caf4015d409ca6cb0ef9a5983c5831e000270185bfbd50e5
SHA512

1b49af340ae5139e3b04a58b50bb0f745a7021419ac77b21d0535cd96149430a680395d721cfaa0a03fe3f370939e27e66e6a9dbb035a86c475ccfb88b4e5bdd
SSDEEP

384:AU2ndBl3x7xV5ddfMdNe5WZBVjZsHjXUJXAEItiNuzjYyuIUSLohNXb:2ZS1lejXUJQEOkuzjYNrSLoP

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  a389b2fa27ef8c2518cba0e99a909ab5_JaffaCakes118
- Size
  
  419KB
- MD5
  
  a389b2fa27ef8c2518cba0e99a909ab5
- SHA1
  
  04edd77b695a7565bbe52f3fbbd8be6f7797264b
- SHA256
  
  d7ffc1c1bb20d153caf4015d409ca6cb0ef9a5983c5831e000270185bfbd50e5
- SHA512
  
  1b49af340ae5139e3b04a58b50bb0f745a7021419ac77b21d0535cd96149430a680395d721cfaa0a03fe3f370939e27e66e6a9dbb035a86c475ccfb88b4e5bdd
- SSDEEP
  
  384:AU2ndBl3x7xV5ddfMdNe5WZBVjZsHjXUJXAEItiNuzjYyuIUSLohNXb:2ZS1lejXUJQEOkuzjYNrSLoP
Score

8^/10

persistence discovery
- Drops file in Drivers directory
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence