General
-
Target
JaffaCakes118_5d10f678fa7e947b05ecafbf063d984d
-
Size
452KB
-
Sample
250310-e3r31ssqz8
-
MD5
5d10f678fa7e947b05ecafbf063d984d
-
SHA1
72e0f6dfd3f05559f1678e7d6298ecfc00251714
-
SHA256
bb309fd192771f75449d10d0827ad4f285341443913a44b9627b6759be87698f
-
SHA512
6765bae7808729f0312b5a77e94919cb7dd76da8bda09150350bbc846c6ed1a7b29e1280031122201b0ef9154e5bb5ddae96c76fff7e434b059ec11a5e5493ac
-
SSDEEP
6144:jh5IjKmFs4Hb4I2HIEi+nPHawdn0/JRSerTWIdeFjkZM6jI7F1eZ9A3a:d5IjKCsC4IsKRFqIQFjkZM6jI7TeZN
Malware Config
Targets
-
-
Target
JaffaCakes118_5d10f678fa7e947b05ecafbf063d984d
-
Size
452KB
-
MD5
5d10f678fa7e947b05ecafbf063d984d
-
SHA1
72e0f6dfd3f05559f1678e7d6298ecfc00251714
-
SHA256
bb309fd192771f75449d10d0827ad4f285341443913a44b9627b6759be87698f
-
SHA512
6765bae7808729f0312b5a77e94919cb7dd76da8bda09150350bbc846c6ed1a7b29e1280031122201b0ef9154e5bb5ddae96c76fff7e434b059ec11a5e5493ac
-
SSDEEP
6144:jh5IjKmFs4Hb4I2HIEi+nPHawdn0/JRSerTWIdeFjkZM6jI7F1eZ9A3a:d5IjKCsC4IsKRFqIQFjkZM6jI7TeZN
Score10/10-
Modifies firewall policy service
-
Adds policy Run key to start application
-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Active Setup
1Registry Run Keys / Startup Folder
2Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
3Active Setup
1Registry Run Keys / Startup Folder
2Create or Modify System Process
1Windows Service
1