5a3c24c80ab5681c56aa1c2d67bc7182983f97ff94a32a9298547a22781729a1 | Triage

Sharing

General

Target

ffd5afb5f03bdf32cf37a44749035058_JaffaCakes118
Size

337KB
Sample

240930-dmstyayhng
MD5

ffd5afb5f03bdf32cf37a44749035058
SHA1

b1f64f9cb1333179fb0268f41ed957cc048736e6
SHA256

5a3c24c80ab5681c56aa1c2d67bc7182983f97ff94a32a9298547a22781729a1
SHA512

c4ddd871c6cf946c412f4e4720368ed2c26b4424e83bd346f3b53261d6fc4540aba0a159dd6c47a496224d35259dd8cdbae57f3b9c022bf92654036ca9bc5144
SSDEEP

6144:sKXckLUdaY0+FTL4nLLuB4tiUGYxKMeTnCuCl3seA:DJr+FTkuYxh0CuCl3R

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  ffd5afb5f03bdf32cf37a44749035058_JaffaCakes118
- Size
  
  337KB
- MD5
  
  ffd5afb5f03bdf32cf37a44749035058
- SHA1
  
  b1f64f9cb1333179fb0268f41ed957cc048736e6
- SHA256
  
  5a3c24c80ab5681c56aa1c2d67bc7182983f97ff94a32a9298547a22781729a1
- SHA512
  
  c4ddd871c6cf946c412f4e4720368ed2c26b4424e83bd346f3b53261d6fc4540aba0a159dd6c47a496224d35259dd8cdbae57f3b9c022bf92654036ca9bc5144
- SSDEEP
  
  6144:sKXckLUdaY0+FTL4nLLuB4tiUGYxKMeTnCuCl3seA:DJr+FTkuYxh0CuCl3R
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence