22b7462fb7ab1d26c87555f2ca73c6c1d819b3ea11d7753399e16eb64f378af4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

172105d5832a73f97a94e50e048e58c4_JaffaCakes118
Size

595KB
Sample

240505-ly2j8aef6v
MD5

172105d5832a73f97a94e50e048e58c4
SHA1

38bb891d2d7b085541483af729d757c6831fe4fa
SHA256

22b7462fb7ab1d26c87555f2ca73c6c1d819b3ea11d7753399e16eb64f378af4
SHA512

6c00a1c86fdf035a364056886c6f3eebd6d3fe539d074ea9f63bdf38c1d4136e120127bb118d13446d369d08165190cd6588ac17ab7ac8eba2e6e810c59902a0
SSDEEP

12288:V+xcAJqomzNMA964tgVFRT0EE5aUbm1uG58MSe0zMt2:V+xcAJUNMA9/tgVjI5rm1d6rT

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  172105d5832a73f97a94e50e048e58c4_JaffaCakes118
- Size
  
  595KB
- MD5
  
  172105d5832a73f97a94e50e048e58c4
- SHA1
  
  38bb891d2d7b085541483af729d757c6831fe4fa
- SHA256
  
  22b7462fb7ab1d26c87555f2ca73c6c1d819b3ea11d7753399e16eb64f378af4
- SHA512
  
  6c00a1c86fdf035a364056886c6f3eebd6d3fe539d074ea9f63bdf38c1d4136e120127bb118d13446d369d08165190cd6588ac17ab7ac8eba2e6e810c59902a0
- SSDEEP
  
  12288:V+xcAJqomzNMA964tgVFRT0EE5aUbm1uG58MSe0zMt2:V+xcAJUNMA9/tgVjI5rm1d6rT
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2