9b5d4fc6b796cde43203e8b92decf4d50bf62f45bfd456b284aad9c22cf4c3e1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3a060372468846b7a590b5a7cb9473b3_JaffaCakes118
Size

246KB
Sample

241012-pps39svdrq
MD5

3a060372468846b7a590b5a7cb9473b3
SHA1

668c9e76f3a24279cb023decefcec81e53e1eca0
SHA256

9b5d4fc6b796cde43203e8b92decf4d50bf62f45bfd456b284aad9c22cf4c3e1
SHA512

abb26c6e1529fc67cbce62d6c5dfc6dc3503a199a9d913b65d71db20a3beab5ae313fb1879ab54b1de0ec0befc69790292978a0230824eedfe942c38705d2970
SSDEEP

3072:uN3NJ4pkYvmKsPTz0ePLRrJob5C68Ft00IHQ0SdVdkG5jdITJtxzfDHEPmmLtWd:0NhYvmJzJjtLIw0Sd95WnF70mmM

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  3a060372468846b7a590b5a7cb9473b3_JaffaCakes118
- Size
  
  246KB
- MD5
  
  3a060372468846b7a590b5a7cb9473b3
- SHA1
  
  668c9e76f3a24279cb023decefcec81e53e1eca0
- SHA256
  
  9b5d4fc6b796cde43203e8b92decf4d50bf62f45bfd456b284aad9c22cf4c3e1
- SHA512
  
  abb26c6e1529fc67cbce62d6c5dfc6dc3503a199a9d913b65d71db20a3beab5ae313fb1879ab54b1de0ec0befc69790292978a0230824eedfe942c38705d2970
- SSDEEP
  
  3072:uN3NJ4pkYvmKsPTz0ePLRrJob5C68Ft00IHQ0SdVdkG5jdITJtxzfDHEPmmLtWd:0NhYvmJzJjtLIw0Sd95WnF70mmM
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence