fbebf3bc3b7dce05dc226926f03f122b4a77cdd5216bdcd19eebce42afb11c2f | Triage

Sharing

General

Target

00bb9692edd458368cbca44747ac44c7_JaffaCakes118
Size

5.5MB
Sample

240426-n9yzksbc89
MD5

00bb9692edd458368cbca44747ac44c7
SHA1

e43d360386c2ddd7c123d7d0d289785c974b27b2
SHA256

fbebf3bc3b7dce05dc226926f03f122b4a77cdd5216bdcd19eebce42afb11c2f
SHA512

b609cafe3ab18f88b5936d3f1a7fe86b0cdb028659d06a0577be7c4d469b8b363c76c10037e631441644001404443167d76d66a6e0a5dc48f95f40c8b4966127
SSDEEP

98304:kGEMrr8aqBGlCPdJg1HI6rmNX3Ar3CQljRD2ooreVWoDXNn8FuLJ:17r8aAQI6rmNX3AbCQlND2oorchDX1J

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  00bb9692edd458368cbca44747ac44c7_JaffaCakes118
- Size
  
  5.5MB
- MD5
  
  00bb9692edd458368cbca44747ac44c7
- SHA1
  
  e43d360386c2ddd7c123d7d0d289785c974b27b2
- SHA256
  
  fbebf3bc3b7dce05dc226926f03f122b4a77cdd5216bdcd19eebce42afb11c2f
- SHA512
  
  b609cafe3ab18f88b5936d3f1a7fe86b0cdb028659d06a0577be7c4d469b8b363c76c10037e631441644001404443167d76d66a6e0a5dc48f95f40c8b4966127
- SSDEEP
  
  98304:kGEMrr8aqBGlCPdJg1HI6rmNX3Ar3CQljRD2ooreVWoDXNn8FuLJ:17r8aAQI6rmNX3AbCQlND2oorchDX1J
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2