b0c9a3b2871dce707f102a39cd6bbbb85d0985c86bff578a17c9481a036a645f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af2403062cab28a876af3aea9ab0c3b8_JaffaCakes118
Size

104KB
Sample

240820-n7y7kavbnl
MD5

af2403062cab28a876af3aea9ab0c3b8
SHA1

a6c569671dff8861b1c4b779fe121eea2640df26
SHA256

b0c9a3b2871dce707f102a39cd6bbbb85d0985c86bff578a17c9481a036a645f
SHA512

2e83575b9ef28dcd345615bcdd4aff776e012f20f97bcd09e32fe7114918e70aa7318a31aece8bad5654019e7de2ada9812fb93d2ca7786e279b1177ebe55738
SSDEEP

1536:fk8FtFlRg/of3W4AnDIfDF36iqjrZ9Fsg0:88FtFJf3XcIfDF1qjpc

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  af2403062cab28a876af3aea9ab0c3b8_JaffaCakes118
- Size
  
  104KB
- MD5
  
  af2403062cab28a876af3aea9ab0c3b8
- SHA1
  
  a6c569671dff8861b1c4b779fe121eea2640df26
- SHA256
  
  b0c9a3b2871dce707f102a39cd6bbbb85d0985c86bff578a17c9481a036a645f
- SHA512
  
  2e83575b9ef28dcd345615bcdd4aff776e012f20f97bcd09e32fe7114918e70aa7318a31aece8bad5654019e7de2ada9812fb93d2ca7786e279b1177ebe55738
- SSDEEP
  
  1536:fk8FtFlRg/of3W4AnDIfDF36iqjrZ9Fsg0:88FtFJf3XcIfDF1qjpc
Score

10^/10

discovery persistence
- Modifies WinLogon for persistence
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence