318b5d2ca7de63b4b01317fe4cc4aec2e5ba44907074aed32d322a4c201d8fa6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ed9fcd3d26423fb9ecb50aacfc5b4e18_JaffaCakes118
Size

4.8MB
Sample

240411-rpc36adb82
MD5

ed9fcd3d26423fb9ecb50aacfc5b4e18
SHA1

84ac3e5db7d390eb62f1dd861ecb78a7788b09bd
SHA256

318b5d2ca7de63b4b01317fe4cc4aec2e5ba44907074aed32d322a4c201d8fa6
SHA512

ba563c4853012b3b5556a79b9ace70649aa8bb16251a601cfa5b09ad4ca9cc61ed780bda2c8c5428f0a64c84b6c4bedc1211d9879e777df6777ef092511330ee
SSDEEP

98304:PX4A33F/eZ+NTjjIfHa2mXlCVbpgGR1+8aKiVVyazx14:vp3ldW4XlUpgGRwRya0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ed9fcd3d26423fb9ecb50aacfc5b4e18_JaffaCakes118
- Size
  
  4.8MB
- MD5
  
  ed9fcd3d26423fb9ecb50aacfc5b4e18
- SHA1
  
  84ac3e5db7d390eb62f1dd861ecb78a7788b09bd
- SHA256
  
  318b5d2ca7de63b4b01317fe4cc4aec2e5ba44907074aed32d322a4c201d8fa6
- SHA512
  
  ba563c4853012b3b5556a79b9ace70649aa8bb16251a601cfa5b09ad4ca9cc61ed780bda2c8c5428f0a64c84b6c4bedc1211d9879e777df6777ef092511330ee
- SSDEEP
  
  98304:PX4A33F/eZ+NTjjIfHa2mXlCVbpgGR1+8aKiVVyazx14:vp3ldW4XlUpgGRwRya0
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2