General
-
Target
c9625c713ad0dc3fa94f6990e4ce594c_JaffaCakes118
-
Size
372KB
-
Sample
240829-w6jdqaxblq
-
MD5
c9625c713ad0dc3fa94f6990e4ce594c
-
SHA1
c415f9afebf4feb375d9c8071691846ef627b269
-
SHA256
b87650a29f1de493b5638a53bbbb23d7835a678f240b082c3d4016b01fe46174
-
SHA512
fc8fd76450ba47df708a6b7f55f5d410a01c30c0ecddbfa2f880d19058014368262813caf273f86e34b298da77517d18c7e107bd5552e9ababf6d42ec1c4365f
-
SSDEEP
6144:NtKe6YiDdv3m3mgKHIl7bNIAROzTuaPUD8XYPK9sQxonoRjfs4hli0YTg6k8jTOc:NtKe6Zv23YdAPaPUDLPZXwjkyAHk83O4
Malware Config
Targets
-
-
Target
c9625c713ad0dc3fa94f6990e4ce594c_JaffaCakes118
-
Size
372KB
-
MD5
c9625c713ad0dc3fa94f6990e4ce594c
-
SHA1
c415f9afebf4feb375d9c8071691846ef627b269
-
SHA256
b87650a29f1de493b5638a53bbbb23d7835a678f240b082c3d4016b01fe46174
-
SHA512
fc8fd76450ba47df708a6b7f55f5d410a01c30c0ecddbfa2f880d19058014368262813caf273f86e34b298da77517d18c7e107bd5552e9ababf6d42ec1c4365f
-
SSDEEP
6144:NtKe6YiDdv3m3mgKHIl7bNIAROzTuaPUD8XYPK9sQxonoRjfs4hli0YTg6k8jTOc:NtKe6Zv23YdAPaPUDLPZXwjkyAHk83O4
Score8/10-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Executes dropped EXE
-
Modifies system executable filetype association
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2Active Setup
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1