bad215500bb4b1cb8e6136cfc24b56d6ec3049bbf4939046149b21a023fbcb91 | Triage

Sharing

General

Target

fe3ed88040e80184bb7260edf85cab70_JaffaCakes118
Size

1.5MB
Sample

240421-c7fjnsgh92
MD5

fe3ed88040e80184bb7260edf85cab70
SHA1

07aa5bb7eb51ba15340848898abeec38df713075
SHA256

bad215500bb4b1cb8e6136cfc24b56d6ec3049bbf4939046149b21a023fbcb91
SHA512

96ec485ce36c902d12c81d394b54439e59f0b21b08c6f3f0febda3d93b004af47407f12b7a52c95fd008817831f3b5c9a81b0d75205e34f4f567ce7eb247c0f6
SSDEEP

24576:FgDgDpHObRl46iPZ9UIRLLy1urNCwax+Wc9mjJUJx7rHlcab3jy+:FgDgDM1lo9UcyEr8waxe4jJG7rFcet

Score

7^/10

Malware Config

Targets

- Target
  
  fe3ed88040e80184bb7260edf85cab70_JaffaCakes118
- Size
  
  1.5MB
- MD5
  
  fe3ed88040e80184bb7260edf85cab70
- SHA1
  
  07aa5bb7eb51ba15340848898abeec38df713075
- SHA256
  
  bad215500bb4b1cb8e6136cfc24b56d6ec3049bbf4939046149b21a023fbcb91
- SHA512
  
  96ec485ce36c902d12c81d394b54439e59f0b21b08c6f3f0febda3d93b004af47407f12b7a52c95fd008817831f3b5c9a81b0d75205e34f4f567ce7eb247c0f6
- SSDEEP
  
  24576:FgDgDpHObRl46iPZ9UIRLLy1urNCwax+Wc9mjJUJx7rHlcab3jy+:FgDgDM1lo9UcyEr8waxe4jJG7rFcet
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2