b0d0d330bc8b4d83b7ef7c7e67b0d62d35446804cc2c98a21544e54311de1562 | Triage

Sharing

General

Target

d985da0d0e696c2fa56d0ee6ecab1e93_JaffaCakes118
Size

3.8MB
Sample

240911-dtzk3azcpn
MD5

d985da0d0e696c2fa56d0ee6ecab1e93
SHA1

7a236d05cfc11d8bf120769feaa55300042d1c17
SHA256

b0d0d330bc8b4d83b7ef7c7e67b0d62d35446804cc2c98a21544e54311de1562
SHA512

eabf6cf9864bdd9658890e60660d501801a981de3eede2ac6248f8306a777a7b85acd7060b094badd89065ad28804e156dab7d8d6c676bfce120c895e8fe25e5
SSDEEP

24576:05SSR7szuOEKdaFKdD+m+d5lQyzifUTFidxy8p8fihL+HNfZd/TwhgfgNbD7:0hJOVtNXymfkF2/hhQf7TFg13

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  d985da0d0e696c2fa56d0ee6ecab1e93_JaffaCakes118
- Size
  
  3.8MB
- MD5
  
  d985da0d0e696c2fa56d0ee6ecab1e93
- SHA1
  
  7a236d05cfc11d8bf120769feaa55300042d1c17
- SHA256
  
  b0d0d330bc8b4d83b7ef7c7e67b0d62d35446804cc2c98a21544e54311de1562
- SHA512
  
  eabf6cf9864bdd9658890e60660d501801a981de3eede2ac6248f8306a777a7b85acd7060b094badd89065ad28804e156dab7d8d6c676bfce120c895e8fe25e5
- SSDEEP
  
  24576:05SSR7szuOEKdaFKdD+m+d5lQyzifUTFidxy8p8fihL+HNfZd/TwhgfgNbD7:0hJOVtNXymfkF2/hhQf7TFg13
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence