2e8aa93c99ea3b587ef495e0e0ad321155dfb49d26baea6c7cd4d206c6d98e41 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c7fcf936bb124906b021e058fdab3c93_JaffaCakes118
Size

160KB
Sample

240829-bqsx1awgle
MD5

c7fcf936bb124906b021e058fdab3c93
SHA1

8ae8d5d474692804b60a7fbb9609b08018d57379
SHA256

2e8aa93c99ea3b587ef495e0e0ad321155dfb49d26baea6c7cd4d206c6d98e41
SHA512

a911208df41ffbe6efef7919cac0d06e6d8f2643c6bb4a2d2c63541add74b67fcaa3ee064f51d79faadfae26a5d6e38e9c2b2c3230fd1c7d886fcb4182c0c3ff
SSDEEP

3072:2/b5KU4TUGDgrvUNMUilBtXSYL1ijs+CXV8HEai:ItKU4TzDZNwBtxAjVweka

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  c7fcf936bb124906b021e058fdab3c93_JaffaCakes118
- Size
  
  160KB
- MD5
  
  c7fcf936bb124906b021e058fdab3c93
- SHA1
  
  8ae8d5d474692804b60a7fbb9609b08018d57379
- SHA256
  
  2e8aa93c99ea3b587ef495e0e0ad321155dfb49d26baea6c7cd4d206c6d98e41
- SHA512
  
  a911208df41ffbe6efef7919cac0d06e6d8f2643c6bb4a2d2c63541add74b67fcaa3ee064f51d79faadfae26a5d6e38e9c2b2c3230fd1c7d886fcb4182c0c3ff
- SSDEEP
  
  3072:2/b5KU4TUGDgrvUNMUilBtXSYL1ijs+CXV8HEai:ItKU4TzDZNwBtxAjVweka
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence