d710f9eae756e70d99c10f4e030c82dabc2844588a8c7ed8abdda48fa00e47a4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f645797eecd8b7b38c7621b9505ec84e_JaffaCakes118
Size

2.6MB
Sample

240925-sfa3wavfkf
MD5

f645797eecd8b7b38c7621b9505ec84e
SHA1

516ae6866678f80bfe9d15938d62a84de29cc1eb
SHA256

d710f9eae756e70d99c10f4e030c82dabc2844588a8c7ed8abdda48fa00e47a4
SHA512

6cacd885db4f97d0ada9f5dac6d0bedc31ead9ace31e3a99b84582318cc4ec8a93cad8deb51611e829aabb8ed2138f45f6f38dbe0307b290733d9d4dabc21c97
SSDEEP

49152:9vEafs6SkHjH8SzyFibecffdi6IZ0W5HKUxaCbOq4PiEiZvKpR:9ffs6SkHjhzyFGJfM6qzwUxj6qNZ

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  f645797eecd8b7b38c7621b9505ec84e_JaffaCakes118
- Size
  
  2.6MB
- MD5
  
  f645797eecd8b7b38c7621b9505ec84e
- SHA1
  
  516ae6866678f80bfe9d15938d62a84de29cc1eb
- SHA256
  
  d710f9eae756e70d99c10f4e030c82dabc2844588a8c7ed8abdda48fa00e47a4
- SHA512
  
  6cacd885db4f97d0ada9f5dac6d0bedc31ead9ace31e3a99b84582318cc4ec8a93cad8deb51611e829aabb8ed2138f45f6f38dbe0307b290733d9d4dabc21c97
- SSDEEP
  
  49152:9vEafs6SkHjH8SzyFibecffdi6IZ0W5HKUxaCbOq4PiEiZvKpR:9ffs6SkHjhzyFGJfM6qzwUxj6qNZ
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence