b37f3335febc2c42bd8bdbdbf594e55b113d1b1dad510b85bf302efb747c7b4a | Triage

Sharing

General

Target

c9066075af479151ff6a4b48b4a318bc_JaffaCakes118
Size

73KB
Sample

240829-r2eshsyerr
MD5

c9066075af479151ff6a4b48b4a318bc
SHA1

cebc95bd98bf6e44af3bbfdb83e51eb3bf01b010
SHA256

b37f3335febc2c42bd8bdbdbf594e55b113d1b1dad510b85bf302efb747c7b4a
SHA512

1d3ad0489d6af406566bc7ed9130f1728c28750789ae5d2591a4cbf5517fd1658bef3116f08eda762b8992ce801b5b57f1d387a042a3deea32d1a393755bc9e6
SSDEEP

1536:xy0fk9SqxfnLRvovrnz2GtCswK/NO4eSRtUsLZ:PfkFtgz2GksJchSRtPd

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  c9066075af479151ff6a4b48b4a318bc_JaffaCakes118
- Size
  
  73KB
- MD5
  
  c9066075af479151ff6a4b48b4a318bc
- SHA1
  
  cebc95bd98bf6e44af3bbfdb83e51eb3bf01b010
- SHA256
  
  b37f3335febc2c42bd8bdbdbf594e55b113d1b1dad510b85bf302efb747c7b4a
- SHA512
  
  1d3ad0489d6af406566bc7ed9130f1728c28750789ae5d2591a4cbf5517fd1658bef3116f08eda762b8992ce801b5b57f1d387a042a3deea32d1a393755bc9e6
- SSDEEP
  
  1536:xy0fk9SqxfnLRvovrnz2GtCswK/NO4eSRtUsLZ:PfkFtgz2GksJchSRtPd
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence