16e894f0a30f80f146132d127678b88c862dd80e0ce49f899df27e5b9247c3df | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eae6b8036cd6ad677f05df5ee4203226_JaffaCakes118
Size

192KB
Sample

240919-jwa85syble
MD5

eae6b8036cd6ad677f05df5ee4203226
SHA1

857de79f5843b796628179848edac8ffa6efe5b6
SHA256

16e894f0a30f80f146132d127678b88c862dd80e0ce49f899df27e5b9247c3df
SHA512

9e748fcf01b8782dfae2e7c039ae7327bec14fe696705ae5671cc96b707270a10ffee39facc8134cb4ff040f5ac6f438d3d2d9f341710e7c9b03f01d230b17f7
SSDEEP

3072:E2gHjibZbskhPe9pce9Bw4u5yMbsdZgTj+7BTqf98kEGoCqCBmEtXYJ:LgiKpIjdAdd1qVNmuY

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  eae6b8036cd6ad677f05df5ee4203226_JaffaCakes118
- Size
  
  192KB
- MD5
  
  eae6b8036cd6ad677f05df5ee4203226
- SHA1
  
  857de79f5843b796628179848edac8ffa6efe5b6
- SHA256
  
  16e894f0a30f80f146132d127678b88c862dd80e0ce49f899df27e5b9247c3df
- SHA512
  
  9e748fcf01b8782dfae2e7c039ae7327bec14fe696705ae5671cc96b707270a10ffee39facc8134cb4ff040f5ac6f438d3d2d9f341710e7c9b03f01d230b17f7
- SSDEEP
  
  3072:E2gHjibZbskhPe9pce9Bw4u5yMbsdZgTj+7BTqf98kEGoCqCBmEtXYJ:LgiKpIjdAdd1qVNmuY
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence