df1ed8d29ae486bcf6f3ebec06842cd5a4fe7552983abcc9f7bb2fff46029091 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d5ea46cc1a75aa873008620beeb35b0f_JaffaCakes118
Size

216KB
Sample

240909-jwayda1brc
MD5

d5ea46cc1a75aa873008620beeb35b0f
SHA1

8b4a9aec19469594e8dd2993269005b8462f2e34
SHA256

df1ed8d29ae486bcf6f3ebec06842cd5a4fe7552983abcc9f7bb2fff46029091
SHA512

df6e9344d62ec00c6e36406f9e1ba96037a6426c68e2878e31b899da4122ebb3ed5957d808526f7ea83903b8bdac098f1f9191fb6110a001b2422ddf4d3a7f0a
SSDEEP

3072:vX8giHln/vksnyjeF/QLbcff2R7ybfur+WBxt/oCw9q:0J2w0xLX2obWq

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d5ea46cc1a75aa873008620beeb35b0f_JaffaCakes118
- Size
  
  216KB
- MD5
  
  d5ea46cc1a75aa873008620beeb35b0f
- SHA1
  
  8b4a9aec19469594e8dd2993269005b8462f2e34
- SHA256
  
  df1ed8d29ae486bcf6f3ebec06842cd5a4fe7552983abcc9f7bb2fff46029091
- SHA512
  
  df6e9344d62ec00c6e36406f9e1ba96037a6426c68e2878e31b899da4122ebb3ed5957d808526f7ea83903b8bdac098f1f9191fb6110a001b2422ddf4d3a7f0a
- SSDEEP
  
  3072:vX8giHln/vksnyjeF/QLbcff2R7ybfur+WBxt/oCw9q:0J2w0xLX2obWq
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence