5659829cad45d6c9abfee6c3c79235ef3fd5be497ae39adb6c9a718ef6c326cf | Triage

Sharing

General

Target

edd4fe4fddb39e50adb4025cfec64a3c_JaffaCakes118
Size

252KB
Sample

240920-r9knqsserq
MD5

edd4fe4fddb39e50adb4025cfec64a3c
SHA1

05bf68130a98ff43572b3204d7e4e32e45fef09d
SHA256

5659829cad45d6c9abfee6c3c79235ef3fd5be497ae39adb6c9a718ef6c326cf
SHA512

862ec683fbf1c9144ea395f15ab496349d34fe97512bb44a992a1913b983c61170b5f1f3c23f84a2f7efd2091a56db1b512527cf83a87fb8ba254dd249b1f6cc
SSDEEP

6144:e8APz30Enf4KfyAYktAr+nVojxrGlogO/FilXZrLEzm5NTF1bp90G7aI186M3se7:gz3kktAr+nVojxrGlogO/FilXZrLEzmm

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  edd4fe4fddb39e50adb4025cfec64a3c_JaffaCakes118
- Size
  
  252KB
- MD5
  
  edd4fe4fddb39e50adb4025cfec64a3c
- SHA1
  
  05bf68130a98ff43572b3204d7e4e32e45fef09d
- SHA256
  
  5659829cad45d6c9abfee6c3c79235ef3fd5be497ae39adb6c9a718ef6c326cf
- SHA512
  
  862ec683fbf1c9144ea395f15ab496349d34fe97512bb44a992a1913b983c61170b5f1f3c23f84a2f7efd2091a56db1b512527cf83a87fb8ba254dd249b1f6cc
- SSDEEP
  
  6144:e8APz30Enf4KfyAYktAr+nVojxrGlogO/FilXZrLEzm5NTF1bp90G7aI186M3se7:gz3kktAr+nVojxrGlogO/FilXZrLEzmm
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence