a9a5160dd963d7e8701d1952855583ec7ccfb552ac47cdd409727a27a4535080 | Triage

Sharing

General

Target

ac6acd364b41686b4e4067a2ce1bcbb4_JaffaCakes118
Size

202KB
Sample

240819-yzmtnstdne
MD5

ac6acd364b41686b4e4067a2ce1bcbb4
SHA1

b82fbe7a43be70d4cf2aa960f3b0fe63a67f1da9
SHA256

a9a5160dd963d7e8701d1952855583ec7ccfb552ac47cdd409727a27a4535080
SHA512

9b0245f7b38ba9d6580fd5ca3fcf2e85e8b4d1610b88e059580159744d60d0c86f1eddd529d60c6940fde659352a3cb7c28fb4cf2be11587debcc030efb84295
SSDEEP

3072:cZbeI76qLh6tPPyDEO54ToSbLhQghqp2TRaE6kiPUOIclpwpk36AxDD:O7uDnUGoSbLhYp2gEHaUOGG6ARD

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  ac6acd364b41686b4e4067a2ce1bcbb4_JaffaCakes118
- Size
  
  202KB
- MD5
  
  ac6acd364b41686b4e4067a2ce1bcbb4
- SHA1
  
  b82fbe7a43be70d4cf2aa960f3b0fe63a67f1da9
- SHA256
  
  a9a5160dd963d7e8701d1952855583ec7ccfb552ac47cdd409727a27a4535080
- SHA512
  
  9b0245f7b38ba9d6580fd5ca3fcf2e85e8b4d1610b88e059580159744d60d0c86f1eddd529d60c6940fde659352a3cb7c28fb4cf2be11587debcc030efb84295
- SSDEEP
  
  3072:cZbeI76qLh6tPPyDEO54ToSbLhQghqp2TRaE6kiPUOIclpwpk36AxDD:O7uDnUGoSbLhYp2gEHaUOGG6ARD
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence