c552cd046602c1e054292a72ecfe9c3a201952800d9fc3b0b652ab610f059cbe | Triage

Sharing

General

Target

36ca871f262c0a36429566696846f7c3_JaffaCakes118
Size

178KB
Sample

241011-zvqv7stdqa
MD5

36ca871f262c0a36429566696846f7c3
SHA1

9a06a82761bab7626f22f6d359de0f0bc7d8110d
SHA256

c552cd046602c1e054292a72ecfe9c3a201952800d9fc3b0b652ab610f059cbe
SHA512

147fb030beb80a9d5a3e9ecdd28722275f7d31467070dc411423363ee7a28f170aef388345d6a6af5a7a38b25414ae434b08e52be375d1551f0ad8647d4029ee
SSDEEP

3072:u0Gox2PD7tC6PNIk/WqGIvMEhc+5n6CdJK8GcBHNmjoH90DGzhQ:6ogPxWqGU/n6CbzGcBIMHIGl

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  36ca871f262c0a36429566696846f7c3_JaffaCakes118
- Size
  
  178KB
- MD5
  
  36ca871f262c0a36429566696846f7c3
- SHA1
  
  9a06a82761bab7626f22f6d359de0f0bc7d8110d
- SHA256
  
  c552cd046602c1e054292a72ecfe9c3a201952800d9fc3b0b652ab610f059cbe
- SHA512
  
  147fb030beb80a9d5a3e9ecdd28722275f7d31467070dc411423363ee7a28f170aef388345d6a6af5a7a38b25414ae434b08e52be375d1551f0ad8647d4029ee
- SSDEEP
  
  3072:u0Gox2PD7tC6PNIk/WqGIvMEhc+5n6CdJK8GcBHNmjoH90DGzhQ:6ogPxWqGU/n6CbzGcBIMHIGl
Score

7^/10

discovery persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2