General
-
Target
eaa7aceb7530b3778e4badab6b873445_JaffaCakes118
-
Size
32KB
-
Sample
240919-fyxy5ssgpl
-
MD5
eaa7aceb7530b3778e4badab6b873445
-
SHA1
0faf40056414f27feed53aa5f12430a5d9de8fd4
-
SHA256
d09b2b35daa47ea25db9ed2c566b7d2c282cbf4fe23a1547d51b7c20c5437680
-
SHA512
1baa371c1c0dae14248ff8beaa5411fd7119489d39ece5635ca88806bbcec852920d211a7d930f616ce8dc4bbd4845ed7d55637a6fae688af380cfdaa97ad192
-
SSDEEP
384:jfgoe2XjWUVM/SOdXvBkeE0vMpFegH4O1n19DeuvS:b62XjW3ZBkjAeFxzLDhvS
Malware Config
Targets
-
-
Target
eaa7aceb7530b3778e4badab6b873445_JaffaCakes118
-
Size
32KB
-
MD5
eaa7aceb7530b3778e4badab6b873445
-
SHA1
0faf40056414f27feed53aa5f12430a5d9de8fd4
-
SHA256
d09b2b35daa47ea25db9ed2c566b7d2c282cbf4fe23a1547d51b7c20c5437680
-
SHA512
1baa371c1c0dae14248ff8beaa5411fd7119489d39ece5635ca88806bbcec852920d211a7d930f616ce8dc4bbd4845ed7d55637a6fae688af380cfdaa97ad192
-
SSDEEP
384:jfgoe2XjWUVM/SOdXvBkeE0vMpFegH4O1n19DeuvS:b62XjW3ZBkjAeFxzLDhvS
Score8/10-
Event Triggered Execution: Image File Execution Options Injection
-
Adds Run key to start application
-
Indicator Removal: Clear Persistence
remove IFEO.
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Image File Execution Options Injection
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Image File Execution Options Injection
1