6810a5c338485fb428bac7fa7e92dfe01c9cc9daef77bb34d1bf2ad37510b317 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2bdb23bc4e91c30b7bcf207957a11fa2_JaffaCakes118
Size

4.6MB
Sample

240509-1mba8abd82
MD5

2bdb23bc4e91c30b7bcf207957a11fa2
SHA1

c921a293c1f3fb77330ee45ff722fd98078eb816
SHA256

6810a5c338485fb428bac7fa7e92dfe01c9cc9daef77bb34d1bf2ad37510b317
SHA512

e22fd6711b30211fc23d2a74d43a5627bdec50d91126234e66ad869b918d1b62efd6ded49a9e354a4c93b90f332b3e216e4d410511c4e26ece8c0fae1ff20e52
SSDEEP

98304:VErpgKZV1h8JyBiNLc5+Jd1mGoM7wdf+Hqg1nmV2HZCkS73P2E9Ak0gK4:ApTfpBiN8+Jd13kdGHnF5TMVAk0T4

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2bdb23bc4e91c30b7bcf207957a11fa2_JaffaCakes118
- Size
  
  4.6MB
- MD5
  
  2bdb23bc4e91c30b7bcf207957a11fa2
- SHA1
  
  c921a293c1f3fb77330ee45ff722fd98078eb816
- SHA256
  
  6810a5c338485fb428bac7fa7e92dfe01c9cc9daef77bb34d1bf2ad37510b317
- SHA512
  
  e22fd6711b30211fc23d2a74d43a5627bdec50d91126234e66ad869b918d1b62efd6ded49a9e354a4c93b90f332b3e216e4d410511c4e26ece8c0fae1ff20e52
- SSDEEP
  
  98304:VErpgKZV1h8JyBiNLc5+Jd1mGoM7wdf+Hqg1nmV2HZCkS73P2E9Ak0gK4:ApTfpBiN8+Jd13kdGHnF5TMVAk0T4
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2