ddde37fc12a2343340988f3c9756e402932117a6acabc94291093006ebdd12ef | Triage

Sharing

Copy URL Twitter E-mail

General

Target

028f74f6e89df709b8a6b9523454041f_JaffaCakes118
Size

315KB
Sample

240427-ghmnxacd87
MD5

028f74f6e89df709b8a6b9523454041f
SHA1

200b68ddf2f81c3d23c11ec0e153bd7fd53b924c
SHA256

ddde37fc12a2343340988f3c9756e402932117a6acabc94291093006ebdd12ef
SHA512

03de980b4b36840e104c4e09551ce4e01e66ce2aaa46a893368b4553010ce5f240e85db049ec02c63b129e6ab9b78149eb00ef1c417779c57c617e59b6b255f0
SSDEEP

6144:srYbUzkuvcBYC47l2xLnvhueEZdkKQ3+7Oj7hTOVA1HWZ2:srdkuveY3CvI5Zdkj6OEu1HS2

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  028f74f6e89df709b8a6b9523454041f_JaffaCakes118
- Size
  
  315KB
- MD5
  
  028f74f6e89df709b8a6b9523454041f
- SHA1
  
  200b68ddf2f81c3d23c11ec0e153bd7fd53b924c
- SHA256
  
  ddde37fc12a2343340988f3c9756e402932117a6acabc94291093006ebdd12ef
- SHA512
  
  03de980b4b36840e104c4e09551ce4e01e66ce2aaa46a893368b4553010ce5f240e85db049ec02c63b129e6ab9b78149eb00ef1c417779c57c617e59b6b255f0
- SSDEEP
  
  6144:srYbUzkuvcBYC47l2xLnvhueEZdkKQ3+7Oj7hTOVA1HWZ2:srdkuveY3CvI5Zdkj6OEu1HS2
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2