2a2c9d85ae862f26b8f5e1f0c2dd8edffec88c3553c503e03017ae64ebc6d7fe | Triage

Sharing

General

Target

ff14b8bb81d4b1b2d31ceb1643e71ad7_JaffaCakes118
Size

176KB
Sample

240929-wnp4jsthmm
MD5

ff14b8bb81d4b1b2d31ceb1643e71ad7
SHA1

d85611d3fc1fb3617b9d9525e587a9a83a7b4fa5
SHA256

2a2c9d85ae862f26b8f5e1f0c2dd8edffec88c3553c503e03017ae64ebc6d7fe
SHA512

f70952ee5bf134cafb9b53ef4aa3e28cec5b045562065ae8bb14930f41b84c5db92030e82a118bf46166c5dcdb70a5eef2ba99b7b83c0ee003239df0e6562ec5
SSDEEP

3072:FkGM3Xk47seowq4c95vDq8zOXGlCTXr+/OJDuZLegVtPq/:unXJseE4cG8Vlkz8fXU

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  ff14b8bb81d4b1b2d31ceb1643e71ad7_JaffaCakes118
- Size
  
  176KB
- MD5
  
  ff14b8bb81d4b1b2d31ceb1643e71ad7
- SHA1
  
  d85611d3fc1fb3617b9d9525e587a9a83a7b4fa5
- SHA256
  
  2a2c9d85ae862f26b8f5e1f0c2dd8edffec88c3553c503e03017ae64ebc6d7fe
- SHA512
  
  f70952ee5bf134cafb9b53ef4aa3e28cec5b045562065ae8bb14930f41b84c5db92030e82a118bf46166c5dcdb70a5eef2ba99b7b83c0ee003239df0e6562ec5
- SSDEEP
  
  3072:FkGM3Xk47seowq4c95vDq8zOXGlCTXr+/OJDuZLegVtPq/:unXJseE4cG8Vlkz8fXU
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence