1e46013fbe7ddaa6aedddc9bf82ff5dc288637a59f6a4ae5648a20f385ff9c44 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

405d910caa5a31d729e33b268f9aead6_JaffaCakes118
Size

3.7MB
Sample

240513-twpfwadg2v
MD5

405d910caa5a31d729e33b268f9aead6
SHA1

8d9049b5d2db4c88628807399ba2b07fdd3d7a7e
SHA256

1e46013fbe7ddaa6aedddc9bf82ff5dc288637a59f6a4ae5648a20f385ff9c44
SHA512

14fc41ead3d6eecc1b112dffac0629e29bec6797b9760c22d902a85ea2f6b30cdfdbc32846391ee719ccc3e0c85afdbf9c6ed623e9a7ae4d0d8c97244c93a919
SSDEEP

98304:qAF1DrpOGita0djPwKYmdJg1oWN2oHSRErmNz:qE/Pitmk5oHaErmNz

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  405d910caa5a31d729e33b268f9aead6_JaffaCakes118
- Size
  
  3.7MB
- MD5
  
  405d910caa5a31d729e33b268f9aead6
- SHA1
  
  8d9049b5d2db4c88628807399ba2b07fdd3d7a7e
- SHA256
  
  1e46013fbe7ddaa6aedddc9bf82ff5dc288637a59f6a4ae5648a20f385ff9c44
- SHA512
  
  14fc41ead3d6eecc1b112dffac0629e29bec6797b9760c22d902a85ea2f6b30cdfdbc32846391ee719ccc3e0c85afdbf9c6ed623e9a7ae4d0d8c97244c93a919
- SSDEEP
  
  98304:qAF1DrpOGita0djPwKYmdJg1oWN2oHSRErmNz:qE/Pitmk5oHaErmNz
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2