9f67115f2745d9d71e2db4d0ad0977a621d32420a2d0ca625cf0c8dad32d154e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

180f5be4c0dfa6fe1bc167e64d73859b_JaffaCakes118
Size

3.8MB
Sample

240505-rkb1ascc51
MD5

180f5be4c0dfa6fe1bc167e64d73859b
SHA1

5a3491be7ad98bc59ee5ced7895585e26e1a204d
SHA256

9f67115f2745d9d71e2db4d0ad0977a621d32420a2d0ca625cf0c8dad32d154e
SHA512

b3ec3495e2a0512f30418873c04cb940e40c42c423f98ea4dfaf94ac27d769d1d3f3f02a50e78e799013108bff138a9d7056f59fe9216f5a0cd62c0068a6c677
SSDEEP

49152:DAJt1t1taMPpW0ZGXr1862sjvGSRsj0Zuur1T75Yi9WN2GVHSrszKErmNF98q:DAxtaMhW0c17vGdJg1bWN2oHSRErmNl

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  180f5be4c0dfa6fe1bc167e64d73859b_JaffaCakes118
- Size
  
  3.8MB
- MD5
  
  180f5be4c0dfa6fe1bc167e64d73859b
- SHA1
  
  5a3491be7ad98bc59ee5ced7895585e26e1a204d
- SHA256
  
  9f67115f2745d9d71e2db4d0ad0977a621d32420a2d0ca625cf0c8dad32d154e
- SHA512
  
  b3ec3495e2a0512f30418873c04cb940e40c42c423f98ea4dfaf94ac27d769d1d3f3f02a50e78e799013108bff138a9d7056f59fe9216f5a0cd62c0068a6c677
- SSDEEP
  
  49152:DAJt1t1taMPpW0ZGXr1862sjvGSRsj0Zuur1T75Yi9WN2GVHSrszKErmNF98q:DAxtaMhW0c17vGdJg1bWN2oHSRErmNl
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2