0951a0cb1b6640cc84e412217c66184a4456485dbc303331213a419b7f9ac905 | Triage

Sharing

General

Target

3a3e7ed17aad990fd4878bf339b6ae4b_JaffaCakes118
Size

313KB
Sample

240512-p8ysvsag95
MD5

3a3e7ed17aad990fd4878bf339b6ae4b
SHA1

88526e7d939eb3b3ffb26ee7bbf8a9d44196e7bb
SHA256

0951a0cb1b6640cc84e412217c66184a4456485dbc303331213a419b7f9ac905
SHA512

e9babec53d3750a1285511654702e8fa42973500ff0094c902d74675a068714dfa537f30d72873fa47bd9d8b7fce0ece7e2f04128370017212af6455d23497ff
SSDEEP

6144:HrK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0Lt:Hryu6/eIo4vMResyEf0uP9d9UG0t

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3a3e7ed17aad990fd4878bf339b6ae4b_JaffaCakes118
- Size
  
  313KB
- MD5
  
  3a3e7ed17aad990fd4878bf339b6ae4b
- SHA1
  
  88526e7d939eb3b3ffb26ee7bbf8a9d44196e7bb
- SHA256
  
  0951a0cb1b6640cc84e412217c66184a4456485dbc303331213a419b7f9ac905
- SHA512
  
  e9babec53d3750a1285511654702e8fa42973500ff0094c902d74675a068714dfa537f30d72873fa47bd9d8b7fce0ece7e2f04128370017212af6455d23497ff
- SSDEEP
  
  6144:HrK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0Lt:Hryu6/eIo4vMResyEf0uP9d9UG0t
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2