725f6f3f86f718c4c170d09c687b9aef6e7caaceadf67230e1065197e0c3cc22 | Triage

Sharing

General

Target

a79f2947edc9daf185253fdd3dee4f74_JaffaCakes118
Size

117KB
Sample

240818-wd7wlsyhrm
MD5

a79f2947edc9daf185253fdd3dee4f74
SHA1

75abfcd09f0076697f58ccd02f3ed22f2e501cee
SHA256

725f6f3f86f718c4c170d09c687b9aef6e7caaceadf67230e1065197e0c3cc22
SHA512

c5d99453726dacd79ddbc1c57d67314aa1d68ac2d25990a576f5a3dfd1a65b2d163722450cbeb6097da6082269ec9828694a4fbc3a74d602344ccc045e2692a4
SSDEEP

1536:uzpoGDl31C8f6SOvaLzX+aXGrj9KABF9SPRFHquxMJOjvSaABsDAwvpKbKQ7LGuS:if6SOozOaXGrjdSP9EaA0ByKQ7Oj

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  a79f2947edc9daf185253fdd3dee4f74_JaffaCakes118
- Size
  
  117KB
- MD5
  
  a79f2947edc9daf185253fdd3dee4f74
- SHA1
  
  75abfcd09f0076697f58ccd02f3ed22f2e501cee
- SHA256
  
  725f6f3f86f718c4c170d09c687b9aef6e7caaceadf67230e1065197e0c3cc22
- SHA512
  
  c5d99453726dacd79ddbc1c57d67314aa1d68ac2d25990a576f5a3dfd1a65b2d163722450cbeb6097da6082269ec9828694a4fbc3a74d602344ccc045e2692a4
- SSDEEP
  
  1536:uzpoGDl31C8f6SOvaLzX+aXGrj9KABF9SPRFHquxMJOjvSaABsDAwvpKbKQ7LGuS:if6SOozOaXGrjdSP9EaA0ByKQ7Oj
Score

7^/10

discovery persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2