043f43614f0a14f0ca0600331481038f934e457db0d577babf52af8a85f9bcdb | Triage

Sharing

General

Target

3bbb2d338dc8d78984f724ff4aecdbd7_JaffaCakes118
Size

313KB
Sample

240512-x93r7sfg69
MD5

3bbb2d338dc8d78984f724ff4aecdbd7
SHA1

62d3d0cce84776e5923cd6b1cf9961e511be2c78
SHA256

043f43614f0a14f0ca0600331481038f934e457db0d577babf52af8a85f9bcdb
SHA512

6c41d47c2c8f5cce7e378cbe6a0a5b49d231c62afc6d0a8f86c123ad74642d70cbcc77def0dbcb2bbdfa7365af3244d67d68edaae3db6057a37aed2039634d2d
SSDEEP

6144:Hrb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMn:HrRu6/eIo4t3PuFITKUAw

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3bbb2d338dc8d78984f724ff4aecdbd7_JaffaCakes118
- Size
  
  313KB
- MD5
  
  3bbb2d338dc8d78984f724ff4aecdbd7
- SHA1
  
  62d3d0cce84776e5923cd6b1cf9961e511be2c78
- SHA256
  
  043f43614f0a14f0ca0600331481038f934e457db0d577babf52af8a85f9bcdb
- SHA512
  
  6c41d47c2c8f5cce7e378cbe6a0a5b49d231c62afc6d0a8f86c123ad74642d70cbcc77def0dbcb2bbdfa7365af3244d67d68edaae3db6057a37aed2039634d2d
- SSDEEP
  
  6144:Hrb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMn:HrRu6/eIo4t3PuFITKUAw
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2