af9cdd7e45369644cb79d66d0215c3dba946f9397448dc81f18801f84bb536a6 | Triage

Sharing

General

Target

15cf519f2db71e6873e800c8c10f0a7b_JaffaCakes118
Size

213KB
Sample

241005-czpglszgkm
MD5

15cf519f2db71e6873e800c8c10f0a7b
SHA1

69a66a7081a322a4e4a56765f4fb585ac7c15164
SHA256

af9cdd7e45369644cb79d66d0215c3dba946f9397448dc81f18801f84bb536a6
SHA512

0ceff7413a16d57e179c467a76f56ab892dc7bc8271746ac8bd916fa7f2b8352d2673002ab8baf8d4b566e737cc5a9b344fe19c84280d143bdcb602a89e7acae
SSDEEP

3072:Zf519mf0qVFfpsNM6DfWleu91/HFpQbRb6mwY3j5S4+rKo7v:ZYVpOM6DOYu91/FpQFb6Yg4+rpD

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  15cf519f2db71e6873e800c8c10f0a7b_JaffaCakes118
- Size
  
  213KB
- MD5
  
  15cf519f2db71e6873e800c8c10f0a7b
- SHA1
  
  69a66a7081a322a4e4a56765f4fb585ac7c15164
- SHA256
  
  af9cdd7e45369644cb79d66d0215c3dba946f9397448dc81f18801f84bb536a6
- SHA512
  
  0ceff7413a16d57e179c467a76f56ab892dc7bc8271746ac8bd916fa7f2b8352d2673002ab8baf8d4b566e737cc5a9b344fe19c84280d143bdcb602a89e7acae
- SSDEEP
  
  3072:Zf519mf0qVFfpsNM6DfWleu91/HFpQbRb6mwY3j5S4+rKo7v:ZYVpOM6DOYu91/FpQFb6Yg4+rpD
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence