2ca411ae651338f8dacedeaad7daf5f4edbc45aa6c5f10ef0ef5594f9d06dd11 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b7edde4fc8ae12657cb393b3efb9be3c_JaffaCakes118
Size

476KB
Sample

240822-redlya1clf
MD5

b7edde4fc8ae12657cb393b3efb9be3c
SHA1

1dc01fc1a1be60b945f483201e6e4a38f32365a8
SHA256

2ca411ae651338f8dacedeaad7daf5f4edbc45aa6c5f10ef0ef5594f9d06dd11
SHA512

7262c0fe6ebd709afff30319a53e953b6aeca135f05f27c4498157e60040df3796013e43e112419dad44d9d4d181624772ba8e6b62afc91d88b7776843040ac1
SSDEEP

6144:/IzU3AJmi15weWXmKuoa2JIV2cs4aWDvOaQFycPFJkaRNLF7N0xXb1FYefmkYBJF:QzoAJmibqPJBGRQFygNx7SxX5Nfm7

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  b7edde4fc8ae12657cb393b3efb9be3c_JaffaCakes118
- Size
  
  476KB
- MD5
  
  b7edde4fc8ae12657cb393b3efb9be3c
- SHA1
  
  1dc01fc1a1be60b945f483201e6e4a38f32365a8
- SHA256
  
  2ca411ae651338f8dacedeaad7daf5f4edbc45aa6c5f10ef0ef5594f9d06dd11
- SHA512
  
  7262c0fe6ebd709afff30319a53e953b6aeca135f05f27c4498157e60040df3796013e43e112419dad44d9d4d181624772ba8e6b62afc91d88b7776843040ac1
- SSDEEP
  
  6144:/IzU3AJmi15weWXmKuoa2JIV2cs4aWDvOaQFycPFJkaRNLF7N0xXb1FYefmkYBJF:QzoAJmibqPJBGRQFygNx7SxX5Nfm7
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence