9560d417572555bce54df5906811400ba938403bc12cc7492ab6ad5a6590833d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bd0cf766c782118c8c12e0f95adcbbc7_JaffaCakes118
Size

128KB
Sample

240823-zax4savcme
MD5

bd0cf766c782118c8c12e0f95adcbbc7
SHA1

d1804e42e64d9e8828b54ff85dfbe780a5c3e84c
SHA256

9560d417572555bce54df5906811400ba938403bc12cc7492ab6ad5a6590833d
SHA512

9f5180c8bcf053d960ffbb20c2163d992158d66243ad752cefa01c43597c40b5a916db03978723300b512cdc1e44d9a08e500e04636c17974cd4f8a419924c0e
SSDEEP

3072:Og0ZrThJnJwgdvRDpw4Ww5yd9jyHIJs7XYKKMMiU1m9:OrHGuNweAxUIJaYKKNP

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  bd0cf766c782118c8c12e0f95adcbbc7_JaffaCakes118
- Size
  
  128KB
- MD5
  
  bd0cf766c782118c8c12e0f95adcbbc7
- SHA1
  
  d1804e42e64d9e8828b54ff85dfbe780a5c3e84c
- SHA256
  
  9560d417572555bce54df5906811400ba938403bc12cc7492ab6ad5a6590833d
- SHA512
  
  9f5180c8bcf053d960ffbb20c2163d992158d66243ad752cefa01c43597c40b5a916db03978723300b512cdc1e44d9a08e500e04636c17974cd4f8a419924c0e
- SSDEEP
  
  3072:Og0ZrThJnJwgdvRDpw4Ww5yd9jyHIJs7XYKKMMiU1m9:OrHGuNweAxUIJaYKKNP
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2