b06c64351004873b5b811d647fc0641704d213f7e81910c3d68b1c1b4f8e83da | Triage

Sharing

General

Target

21fc45549797f49dd2307bf838e657ca_JaffaCakes118
Size

322KB
Sample

240507-2bth4adh95
MD5

21fc45549797f49dd2307bf838e657ca
SHA1

3c8853ff9c55b053b0bc6b91228726e2149106fd
SHA256

b06c64351004873b5b811d647fc0641704d213f7e81910c3d68b1c1b4f8e83da
SHA512

b92316a15d65b4d4b153e39bd3e18cc98a07c02993cd9ae3f92a0296fab69e0011098bb3b03b5f5d811e4a441a359dd1df492fb131b09df052a147e752ec5463
SSDEEP

6144:QXPn2EJLWvidxTtopGgKhQhHJ3207yNjC4Dsp:4+ENWvidxTtlgKhGpG07yNlsp

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  21fc45549797f49dd2307bf838e657ca_JaffaCakes118
- Size
  
  322KB
- MD5
  
  21fc45549797f49dd2307bf838e657ca
- SHA1
  
  3c8853ff9c55b053b0bc6b91228726e2149106fd
- SHA256
  
  b06c64351004873b5b811d647fc0641704d213f7e81910c3d68b1c1b4f8e83da
- SHA512
  
  b92316a15d65b4d4b153e39bd3e18cc98a07c02993cd9ae3f92a0296fab69e0011098bb3b03b5f5d811e4a441a359dd1df492fb131b09df052a147e752ec5463
- SSDEEP
  
  6144:QXPn2EJLWvidxTtopGgKhQhHJ3207yNjC4Dsp:4+ENWvidxTtlgKhGpG07yNlsp
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2