24cd7673c8fedff6820bac2ed1a03a2dcdfcd1d10fdf73357df4b3c8743b4478 | Triage

Sharing

General

Target

0401788b0335988d3d24b13597d81ec2_JaffaCakes118
Size

586KB
Sample

240428-a4c82ace6s
MD5

0401788b0335988d3d24b13597d81ec2
SHA1

fbb8eae45286e02bd053177e0c9bd5026a9477cb
SHA256

24cd7673c8fedff6820bac2ed1a03a2dcdfcd1d10fdf73357df4b3c8743b4478
SHA512

261f7c9afb3e9a53ce9cf6a08f9012b42a61a243926ef4812d0967be982fc29d40b2baea263054b7d457032bd66ab27b3973ae0bd2d49ab08212a6454887b7d9
SSDEEP

12288:N4efV5INoSUUgDp8YROY1Rxi27DuSK8p6a70RxIza/eL8bW3:NjINoSGp8kOYli27DFBIa70R3/eLsG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0401788b0335988d3d24b13597d81ec2_JaffaCakes118
- Size
  
  586KB
- MD5
  
  0401788b0335988d3d24b13597d81ec2
- SHA1
  
  fbb8eae45286e02bd053177e0c9bd5026a9477cb
- SHA256
  
  24cd7673c8fedff6820bac2ed1a03a2dcdfcd1d10fdf73357df4b3c8743b4478
- SHA512
  
  261f7c9afb3e9a53ce9cf6a08f9012b42a61a243926ef4812d0967be982fc29d40b2baea263054b7d457032bd66ab27b3973ae0bd2d49ab08212a6454887b7d9
- SSDEEP
  
  12288:N4efV5INoSUUgDp8YROY1Rxi27DuSK8p6a70RxIza/eL8bW3:NjINoSGp8kOYli27DFBIa70R3/eLsG
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2