a98d0d6cecc6bd8945f1c710b1bf542cf1d4b58f56cde1551cbf3b0f09ba28cb | Triage

Sharing

General

Target

1823191409d6f6df5294c2b96c83f936_JaffaCakes118
Size

212KB
Sample

241006-pzr9qayfnc
MD5

1823191409d6f6df5294c2b96c83f936
SHA1

aaeb5707d8d887556e333906e95c3ae857c2b499
SHA256

a98d0d6cecc6bd8945f1c710b1bf542cf1d4b58f56cde1551cbf3b0f09ba28cb
SHA512

4fb9027316f83d8e1110aba534d6f6cb1c553508f9865750ea2f03e207a83dc896ffdccd3a552f8e9a6553c4e7c16f2fad809c3c76c1c8eb6c233441572ba3e6
SSDEEP

6144:Zdbdskku/rSv2VHuKb6n3shkzmbRC0dX:NJku/rSv2VHuK+sh1

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  1823191409d6f6df5294c2b96c83f936_JaffaCakes118
- Size
  
  212KB
- MD5
  
  1823191409d6f6df5294c2b96c83f936
- SHA1
  
  aaeb5707d8d887556e333906e95c3ae857c2b499
- SHA256
  
  a98d0d6cecc6bd8945f1c710b1bf542cf1d4b58f56cde1551cbf3b0f09ba28cb
- SHA512
  
  4fb9027316f83d8e1110aba534d6f6cb1c553508f9865750ea2f03e207a83dc896ffdccd3a552f8e9a6553c4e7c16f2fad809c3c76c1c8eb6c233441572ba3e6
- SSDEEP
  
  6144:Zdbdskku/rSv2VHuKb6n3shkzmbRC0dX:NJku/rSv2VHuK+sh1
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence