b5ef3b706f84f927c6bcb3d0ce2e418efc0e521c8df342a51b55ac5c0d837f36 | Triage

Sharing

General

Target

d50fd18aac10d482d9921cfe038e9661_JaffaCakes118
Size

148KB
Sample

240908-zfhahswhkg
MD5

d50fd18aac10d482d9921cfe038e9661
SHA1

7a7ffa618b37c4b50cd05e3f39b38251daa7049d
SHA256

b5ef3b706f84f927c6bcb3d0ce2e418efc0e521c8df342a51b55ac5c0d837f36
SHA512

143fb20de9b07cdc44be3707a2cfdef138080580f28ac5df7f334edfdc10081693f66812726179961337f9d02399241c1a7c6349b7e180f5d3f80f75e28ba445
SSDEEP

3072:ZxvCBjrvD734HOb3zbSN3zOdfAkKEjXnMX4p5ViHsnTmFIy:ZxvCBjf73CzO9Ak97ngi7iHsTA

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  d50fd18aac10d482d9921cfe038e9661_JaffaCakes118
- Size
  
  148KB
- MD5
  
  d50fd18aac10d482d9921cfe038e9661
- SHA1
  
  7a7ffa618b37c4b50cd05e3f39b38251daa7049d
- SHA256
  
  b5ef3b706f84f927c6bcb3d0ce2e418efc0e521c8df342a51b55ac5c0d837f36
- SHA512
  
  143fb20de9b07cdc44be3707a2cfdef138080580f28ac5df7f334edfdc10081693f66812726179961337f9d02399241c1a7c6349b7e180f5d3f80f75e28ba445
- SSDEEP
  
  3072:ZxvCBjrvD734HOb3zbSN3zOdfAkKEjXnMX4p5ViHsnTmFIy:ZxvCBjf73CzO9Ak97ngi7iHsTA
Score

7^/10

discovery persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2