9051077798743147fa45e0c0dddfdd00797b394fb6304f39da109cf0be1d5eb9 | Triage

Sharing

General

Target

00fc2419fd43cedf29673f4288195368_JaffaCakes118
Size

24KB
Sample

240930-m5y84s1glm
MD5

00fc2419fd43cedf29673f4288195368
SHA1

17248a82c6c30f645331e48de3a7c2ec6e5aa50c
SHA256

9051077798743147fa45e0c0dddfdd00797b394fb6304f39da109cf0be1d5eb9
SHA512

9e8cdbcbcfaca04c380ca97a9b2a2d3e6196d36093f7ea69f65727969fee81205cd02f8c82f0ff8154e36c2c904f259ae64b05604c7e37030e26d1c3a9964e15
SSDEEP

384:E3eVES+/xwGkRKJJXlM61qmTTMVF9/q5B0:bGS+ZfbJJXO8qYoAe

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  00fc2419fd43cedf29673f4288195368_JaffaCakes118
- Size
  
  24KB
- MD5
  
  00fc2419fd43cedf29673f4288195368
- SHA1
  
  17248a82c6c30f645331e48de3a7c2ec6e5aa50c
- SHA256
  
  9051077798743147fa45e0c0dddfdd00797b394fb6304f39da109cf0be1d5eb9
- SHA512
  
  9e8cdbcbcfaca04c380ca97a9b2a2d3e6196d36093f7ea69f65727969fee81205cd02f8c82f0ff8154e36c2c904f259ae64b05604c7e37030e26d1c3a9964e15
- SSDEEP
  
  384:E3eVES+/xwGkRKJJXlM61qmTTMVF9/q5B0:bGS+ZfbJJXO8qYoAe
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Enumerates processes with tasklist
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Process Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence