7da25f7435201c7a2497b7799256daf5e7f6be785251263e1e1c52dddaea919b | Triage

Sharing

General

Target

f71eff4541812460cbd4647f890091a5_JaffaCakes118
Size

165KB
Sample

240926-aa6ngsvfpk
MD5

f71eff4541812460cbd4647f890091a5
SHA1

9fbef5163a7cab38671aa2826bc7972a353766e6
SHA256

7da25f7435201c7a2497b7799256daf5e7f6be785251263e1e1c52dddaea919b
SHA512

3b454776afc3668990b0da85dacfabb1fc6c344175b9ee67ee9fce984eb4ff2070702cc467b3d149467998904d06f20fce9e7040f605880579beac42e44df0e3
SSDEEP

3072:PkulPvC6y5eCb9E4QcFrVfyIbMC/Nq+9tJptwuGAab2A8zdVLL+YPMLO:jHCNbb9m0R6Ibf/NqU13aSA8bqYPM

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  f71eff4541812460cbd4647f890091a5_JaffaCakes118
- Size
  
  165KB
- MD5
  
  f71eff4541812460cbd4647f890091a5
- SHA1
  
  9fbef5163a7cab38671aa2826bc7972a353766e6
- SHA256
  
  7da25f7435201c7a2497b7799256daf5e7f6be785251263e1e1c52dddaea919b
- SHA512
  
  3b454776afc3668990b0da85dacfabb1fc6c344175b9ee67ee9fce984eb4ff2070702cc467b3d149467998904d06f20fce9e7040f605880579beac42e44df0e3
- SSDEEP
  
  3072:PkulPvC6y5eCb9E4QcFrVfyIbMC/Nq+9tJptwuGAab2A8zdVLL+YPMLO:jHCNbb9m0R6Ibf/NqU13aSA8bqYPM
Score

7^/10

discovery persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2