dfc49721ffa5eb9a3ae3f411217dcc0083125bb9796be496eda913fb084942be | Triage

Sharing

General

Target

15ea1880ad2b681969207df079c04afe_JaffaCakes118
Size

200KB
Sample

241005-dk2n3awdmf
MD5

15ea1880ad2b681969207df079c04afe
SHA1

824d7b0ac61cfe8c0e31c22ac8815fcdb5168616
SHA256

dfc49721ffa5eb9a3ae3f411217dcc0083125bb9796be496eda913fb084942be
SHA512

3c684d6645c57ee86986351f5fd1d9fb9e75e4b82a34356e9be0d71867e822163e35f097dd324bc666407d1b3f1c99ceb810ff5e2b1ab9096039babcfb50da4d
SSDEEP

3072:5rbGyALtpAehesL5bEGsMgA9NFDn1q2ZRg9HQ6nae8m6+z:5vW8M5bEEgEFxq2ZRg9wI1se

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  15ea1880ad2b681969207df079c04afe_JaffaCakes118
- Size
  
  200KB
- MD5
  
  15ea1880ad2b681969207df079c04afe
- SHA1
  
  824d7b0ac61cfe8c0e31c22ac8815fcdb5168616
- SHA256
  
  dfc49721ffa5eb9a3ae3f411217dcc0083125bb9796be496eda913fb084942be
- SHA512
  
  3c684d6645c57ee86986351f5fd1d9fb9e75e4b82a34356e9be0d71867e822163e35f097dd324bc666407d1b3f1c99ceb810ff5e2b1ab9096039babcfb50da4d
- SSDEEP
  
  3072:5rbGyALtpAehesL5bEGsMgA9NFDn1q2ZRg9HQ6nae8m6+z:5vW8M5bEEgEFxq2ZRg9wI1se
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence