9d92ce5ef02ca4e83bd5580741383d8db6a162dcfba7a9729459af2faa2df532 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

df549855805586cf349a29e26568ab05_JaffaCakes118
Size

515KB
Sample

240914-c1xjlstbke
MD5

df549855805586cf349a29e26568ab05
SHA1

b2871a842a944801ea005ac5aa03674cf380ef35
SHA256

9d92ce5ef02ca4e83bd5580741383d8db6a162dcfba7a9729459af2faa2df532
SHA512

fbc43f1d9f95228208a9ab09e30633a7d08591d3aaf922f23053f0c9c5e4727ff0ade62495b3a141c1e538f5c9b2e8b5a77d31f0fbdff7ad5001acd13e48ac43
SSDEEP

12288:wEILCXn2B+vEuUcjJ6zzMotqByTiaJ1l5vzLeCs5V7uikFg:fImXw+ccszN3iaJ1HvzLeCglubg

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  df549855805586cf349a29e26568ab05_JaffaCakes118
- Size
  
  515KB
- MD5
  
  df549855805586cf349a29e26568ab05
- SHA1
  
  b2871a842a944801ea005ac5aa03674cf380ef35
- SHA256
  
  9d92ce5ef02ca4e83bd5580741383d8db6a162dcfba7a9729459af2faa2df532
- SHA512
  
  fbc43f1d9f95228208a9ab09e30633a7d08591d3aaf922f23053f0c9c5e4727ff0ade62495b3a141c1e538f5c9b2e8b5a77d31f0fbdff7ad5001acd13e48ac43
- SSDEEP
  
  12288:wEILCXn2B+vEuUcjJ6zzMotqByTiaJ1l5vzLeCs5V7uikFg:fImXw+ccszN3iaJ1HvzLeCglubg
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence