4b526410e7f478fe526b1c217eecfc84caed4411531af0003f1b85754cfeb69e | Triage

Sharing

General

Target

de006be0451993aeec473973ffaa52cf_JaffaCakes118
Size

37KB
Sample

240913-jsvtdasdlq
MD5

de006be0451993aeec473973ffaa52cf
SHA1

6571042eae6eb27e1cae3930bb2a847f78f715f4
SHA256

4b526410e7f478fe526b1c217eecfc84caed4411531af0003f1b85754cfeb69e
SHA512

667954c2ece515bd801ad43940364ce9097a49b6adc3efd1484a7b127be1a14b518ba7b1746b7cb04fee241623193173723b8d0280ec5c8eda133599f0c63058
SSDEEP

768:9e+yQkCn+gcm81//Rxp75k9U1EmhoW/yWl6t61gt1JsRN5vXlngJFY:6Qxn+gv81/5xp7S9U1E/Hh61q1yRNfnL

Score

8^/10

defense_evasion discovery persistence

Malware Config

Targets

- Target
  
  de006be0451993aeec473973ffaa52cf_JaffaCakes118
- Size
  
  37KB
- MD5
  
  de006be0451993aeec473973ffaa52cf
- SHA1
  
  6571042eae6eb27e1cae3930bb2a847f78f715f4
- SHA256
  
  4b526410e7f478fe526b1c217eecfc84caed4411531af0003f1b85754cfeb69e
- SHA512
  
  667954c2ece515bd801ad43940364ce9097a49b6adc3efd1484a7b127be1a14b518ba7b1746b7cb04fee241623193173723b8d0280ec5c8eda133599f0c63058
- SSDEEP
  
  768:9e+yQkCn+gcm81//Rxp75k9U1EmhoW/yWl6t61gt1JsRN5vXlngJFY:6Qxn+gv81/5xp7S9U1E/Hh61q1yRNfnL
Score

8^/10

defense_evasion discovery persistence
- Adds policy Run key to start application
  persistence
- Event Triggered Execution: Image File Execution Options Injection
  persistence
- Deletes itself
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Event Triggered Execution

Image File Execution Options Injection

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Event Triggered Execution

Image File Execution Options Injection

Defense Evasion

Indicator Removal

File Deletion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscoverypersistence

behavioral2

defense_evasiondiscoverypersistence