34a50c907c30a7c942719fe744be023b4a69100f1968290f06d9628d39fd8d9a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

30012f3a81dd52782223106460e696da_JaffaCakes118
Size

703KB
Sample

240510-txecashh62
MD5

30012f3a81dd52782223106460e696da
SHA1

10c84d20ec4970c6ab9b1db65f6b19a57d1e0b14
SHA256

34a50c907c30a7c942719fe744be023b4a69100f1968290f06d9628d39fd8d9a
SHA512

fcf006ac3405945b2be37157e2b6bf8a9a2913dfcd2f21feac2ed59a9d78564405301cfa55d34609ae6541f4940e56b5823292ab98f2f903793fbf7b31c295c9
SSDEEP

12288:BHgLxi7Ma55+pDZIWcZWO5RgbdtK15LRCxg1RHeDpMgv4t1goX86rN:BHMiAe5aIWiFHktK7eDpMgvO11M6rN

Score

7^/10

Malware Config

Targets

- Target
  
  30012f3a81dd52782223106460e696da_JaffaCakes118
- Size
  
  703KB
- MD5
  
  30012f3a81dd52782223106460e696da
- SHA1
  
  10c84d20ec4970c6ab9b1db65f6b19a57d1e0b14
- SHA256
  
  34a50c907c30a7c942719fe744be023b4a69100f1968290f06d9628d39fd8d9a
- SHA512
  
  fcf006ac3405945b2be37157e2b6bf8a9a2913dfcd2f21feac2ed59a9d78564405301cfa55d34609ae6541f4940e56b5823292ab98f2f903793fbf7b31c295c9
- SSDEEP
  
  12288:BHgLxi7Ma55+pDZIWcZWO5RgbdtK15LRCxg1RHeDpMgv4t1goX86rN:BHMiAe5aIWiFHktK7eDpMgvO11M6rN
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2