fb226657e96bda0bbbfe6ca37c5bb2b5f12e8139fa3badaf20d902cbedef1933 | Triage

Sharing

General

Target

fdb05761a7eda3f18248503f2c97d697_JaffaCakes118
Size

80KB
Sample

240929-dp3rxszhqa
MD5

fdb05761a7eda3f18248503f2c97d697
SHA1

ac250c30351b041fcce9801a5499c417204529b3
SHA256

fb226657e96bda0bbbfe6ca37c5bb2b5f12e8139fa3badaf20d902cbedef1933
SHA512

050038e3ed1100859a039037e3829561c2d559da58bb8ad3e69cb7836bdd891e65271cfa3571c1e9936d6f4f438b2f1146399e16985268878d05f9535f2a6de2
SSDEEP

1536:pOcTPDR8yd5siHcTylznfRASJBA+9PfaFYHZRqJfq8lHrRfOQeCTscXyv3g0V3Et:phbR8Y5s0sylzpjBP9XOkZR58lHrNOQr

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  details.pif
- Size
  
  84KB
- MD5
  
  d3a8b3dcde44b81c0e69cc2a8a36e844
- SHA1
  
  5f0acca868adf8a3878270194e48db674dcf360c
- SHA256
  
  e921404d6c4224486ec3ad2cfb2712d2dd628c586bd42e94fdbd021db7576016
- SHA512
  
  9b757944c392f0c2b252ac1d27f3d30a1b3d200271ff6c3984f97ff619d2e5f3ae53102e5962a947a72138f4fb5d9976363c4719fe0e5b1dfa71c669a1453a96
- SSDEEP
  
  1536:8uGysa3E+EznfRASJBA+9PfaFYHZ9qJfq8lHrRf2QeCTscXyv3g0XP46NCHEKS62:j07zpjBP9XOkZ958lHrN2QicCo0f46tT
Score

7^/10

discovery persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence