c0a07295fb3e5c63e2fd7e8a9ec55237d4435e016506ceaf42c067f99a710140 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

100d3a1bdf0b26ce4bedd3362fffd487_JaffaCakes118
Size

455KB
Sample

241003-wzgasatbka
MD5

100d3a1bdf0b26ce4bedd3362fffd487
SHA1

b56f84557526f84e0269b373b5924f106bbd2653
SHA256

c0a07295fb3e5c63e2fd7e8a9ec55237d4435e016506ceaf42c067f99a710140
SHA512

16f0fedba75565e1d2ed76753ed6f9bc2768422ae9576d85247a2be334588ba27fdc8f64a9d1754e9e117e011c463c36bc41c56257c997a6d3de56b898f3cb5b
SSDEEP

6144:3KXckLUdaY093FTL4nLLuB4tiUGYxKMeTnCuCl3sGakDTr4Nd7jWjKnEIv3CO:8Jr93FTkuYxh0CuCl3naasNdujHO

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  100d3a1bdf0b26ce4bedd3362fffd487_JaffaCakes118
- Size
  
  455KB
- MD5
  
  100d3a1bdf0b26ce4bedd3362fffd487
- SHA1
  
  b56f84557526f84e0269b373b5924f106bbd2653
- SHA256
  
  c0a07295fb3e5c63e2fd7e8a9ec55237d4435e016506ceaf42c067f99a710140
- SHA512
  
  16f0fedba75565e1d2ed76753ed6f9bc2768422ae9576d85247a2be334588ba27fdc8f64a9d1754e9e117e011c463c36bc41c56257c997a6d3de56b898f3cb5b
- SSDEEP
  
  6144:3KXckLUdaY093FTL4nLLuB4tiUGYxKMeTnCuCl3sGakDTr4Nd7jWjKnEIv3CO:8Jr93FTkuYxh0CuCl3naasNdujHO
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence