f6a3c6bfc090140c5726787cc342aba2cf019724580c260b12465d9ca24afe53 | Triage

Sharing

General

Target

dc52941fc47bb7a9396256003b802520_JaffaCakes118
Size

642KB
Sample

240912-p7c5rswbqm
MD5

dc52941fc47bb7a9396256003b802520
SHA1

b68c3a7e2270d9aa8cea5e14e934bc535d5fac1d
SHA256

f6a3c6bfc090140c5726787cc342aba2cf019724580c260b12465d9ca24afe53
SHA512

500f11211367ca67311a979b36e125e19d5e02341812aea65d90e7711e4de6eabfac9ef37d5266eae86ba0b25e8bd3fce9d61ad4b77a66517328e54bae5a503a
SSDEEP

12288:+NpB/92Sebbzsm2M6XR3ju55G+dMz4YSBV/exgD6P5R/FW0:+d1abQRC55Zdqy/exgD6P5RdW0

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  dc52941fc47bb7a9396256003b802520_JaffaCakes118
- Size
  
  642KB
- MD5
  
  dc52941fc47bb7a9396256003b802520
- SHA1
  
  b68c3a7e2270d9aa8cea5e14e934bc535d5fac1d
- SHA256
  
  f6a3c6bfc090140c5726787cc342aba2cf019724580c260b12465d9ca24afe53
- SHA512
  
  500f11211367ca67311a979b36e125e19d5e02341812aea65d90e7711e4de6eabfac9ef37d5266eae86ba0b25e8bd3fce9d61ad4b77a66517328e54bae5a503a
- SSDEEP
  
  12288:+NpB/92Sebbzsm2M6XR3ju55G+dMz4YSBV/exgD6P5R/FW0:+d1abQRC55Zdqy/exgD6P5RdW0
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence