1e2232a9c489058858e5080dcfda9102d8288993df6dcb5c7f2292ba2c4aebc4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13a6bc9b519a9893de77c98cb8934ab5_JaffaCakes118
Size

321KB
Sample

240504-vgvj1sbg7z
MD5

13a6bc9b519a9893de77c98cb8934ab5
SHA1

3d944a326f4b2c4c60140031a4cd9d1bc1cca3e4
SHA256

1e2232a9c489058858e5080dcfda9102d8288993df6dcb5c7f2292ba2c4aebc4
SHA512

d17fd1850f312d853f7337ecd0b50b5061f7c18ee421e92b474341a5dcc09c9f5c2523ff4d515b4d01a3ceb40b40d6e8d4deb99cb0a77fc582c8a3ea72d4985d
SSDEEP

6144:6Gnm5qhB3O0RhTDkFcDv6iHk68ziipu7KcaV+BhDhU030Oc:xnm5qhB3O0RhPkCDx8+YiKcmSh/30Oc

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  13a6bc9b519a9893de77c98cb8934ab5_JaffaCakes118
- Size
  
  321KB
- MD5
  
  13a6bc9b519a9893de77c98cb8934ab5
- SHA1
  
  3d944a326f4b2c4c60140031a4cd9d1bc1cca3e4
- SHA256
  
  1e2232a9c489058858e5080dcfda9102d8288993df6dcb5c7f2292ba2c4aebc4
- SHA512
  
  d17fd1850f312d853f7337ecd0b50b5061f7c18ee421e92b474341a5dcc09c9f5c2523ff4d515b4d01a3ceb40b40d6e8d4deb99cb0a77fc582c8a3ea72d4985d
- SSDEEP
  
  6144:6Gnm5qhB3O0RhTDkFcDv6iHk68ziipu7KcaV+BhDhU030Oc:xnm5qhB3O0RhPkCDx8+YiKcmSh/30Oc
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2