ddeddd3544ade8f35a31ae35c09d364afd098de828aa6078df215690771e51e8 | Triage

Sharing

General

Target

046c7f02aba5ca279aef255dab129030_JaffaCakes118
Size

174KB
Sample

241001-ffed3svhke
MD5

046c7f02aba5ca279aef255dab129030
SHA1

a7b0d720a5bc675f5eca99bbbd21730194466138
SHA256

ddeddd3544ade8f35a31ae35c09d364afd098de828aa6078df215690771e51e8
SHA512

8b15cd4871e554f6d96a732766b3b6e65b33a7601702da6db6b6e4e6de929246a98cb13c61c13e0f12a04eba68ed8b74a05ad7da0eda6c1eb8ccd85cadc0f888
SSDEEP

3072:ETVp0sZQijqs7GX/W9imZIzcQn055c/3orHlhST8i2bIR:Cp0sNjqs7q/6ZI4iWzLST8RI

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  046c7f02aba5ca279aef255dab129030_JaffaCakes118
- Size
  
  174KB
- MD5
  
  046c7f02aba5ca279aef255dab129030
- SHA1
  
  a7b0d720a5bc675f5eca99bbbd21730194466138
- SHA256
  
  ddeddd3544ade8f35a31ae35c09d364afd098de828aa6078df215690771e51e8
- SHA512
  
  8b15cd4871e554f6d96a732766b3b6e65b33a7601702da6db6b6e4e6de929246a98cb13c61c13e0f12a04eba68ed8b74a05ad7da0eda6c1eb8ccd85cadc0f888
- SSDEEP
  
  3072:ETVp0sZQijqs7GX/W9imZIzcQn055c/3orHlhST8i2bIR:Cp0sNjqs7q/6ZI4iWzLST8RI
Score

7^/10

discovery persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2