0ec2d71347f3fb97c0bb0368aa76ab69a8674ca0019e77e1466262e8f3c02c78 | Triage

Sharing

General

Target

da1179a1ea4e82a5343ec26e7b2eaccb_JaffaCakes118
Size

148KB
Sample

240911-lks1xstbkj
MD5

da1179a1ea4e82a5343ec26e7b2eaccb
SHA1

703940e6669c50e7497893212b6e4410120cb006
SHA256

0ec2d71347f3fb97c0bb0368aa76ab69a8674ca0019e77e1466262e8f3c02c78
SHA512

803c44c69ae96135051d202956b2f3c6fa8950d88578601a00e5a360f36636a80eb533c6e249bfd0a6ab4322eea491e5c1e9af9a6d859389ceb93b5af92fd028
SSDEEP

3072:GSCcW8hywakr39rAbU/XYaDJy1St9x2bANkgXyL6oILtYvFIy:GSg8hywasIaB2cKLULte

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  da1179a1ea4e82a5343ec26e7b2eaccb_JaffaCakes118
- Size
  
  148KB
- MD5
  
  da1179a1ea4e82a5343ec26e7b2eaccb
- SHA1
  
  703940e6669c50e7497893212b6e4410120cb006
- SHA256
  
  0ec2d71347f3fb97c0bb0368aa76ab69a8674ca0019e77e1466262e8f3c02c78
- SHA512
  
  803c44c69ae96135051d202956b2f3c6fa8950d88578601a00e5a360f36636a80eb533c6e249bfd0a6ab4322eea491e5c1e9af9a6d859389ceb93b5af92fd028
- SSDEEP
  
  3072:GSCcW8hywakr39rAbU/XYaDJy1St9x2bANkgXyL6oILtYvFIy:GSg8hywasIaB2cKLULte
Score

7^/10

discovery persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2