e5c0624c4d6a1d0d2f1a175955c804f66e95ac057eee2f436b8ce3b8345ce800 | Triage

Sharing

General

Target

ea735dff3985b39a2291c7d86225a351_JaffaCakes118
Size

15KB
Sample

240919-dbxczsxdnq
MD5

ea735dff3985b39a2291c7d86225a351
SHA1

73eda0073e8added331c3e527f034ccd346b341a
SHA256

e5c0624c4d6a1d0d2f1a175955c804f66e95ac057eee2f436b8ce3b8345ce800
SHA512

c480e71e7dd5ced927f71b1096c4a32b010ee621ac300a393cfc5b0281d5589dd4830f26dc9ebfbf01c69ed3a3ee729c52143a8dbda81e29c373d0b1bbe95f18
SSDEEP

192:w2WWbDk684j//uieX2+rz5utWW6y26MuExHmgZ3h68gIOE7zrTy26CcCnaLncCp:9WWbwfO/uhRzmlUx9OorTyecCYp

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  ea735dff3985b39a2291c7d86225a351_JaffaCakes118
- Size
  
  15KB
- MD5
  
  ea735dff3985b39a2291c7d86225a351
- SHA1
  
  73eda0073e8added331c3e527f034ccd346b341a
- SHA256
  
  e5c0624c4d6a1d0d2f1a175955c804f66e95ac057eee2f436b8ce3b8345ce800
- SHA512
  
  c480e71e7dd5ced927f71b1096c4a32b010ee621ac300a393cfc5b0281d5589dd4830f26dc9ebfbf01c69ed3a3ee729c52143a8dbda81e29c373d0b1bbe95f18
- SSDEEP
  
  192:w2WWbDk684j//uieX2+rz5utWW6y26MuExHmgZ3h68gIOE7zrTy26CcCnaLncCp:9WWbwfO/uhRzmlUx9OorTyecCYp
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2