155284c8512dbfee2dee89fc3e28d23216a9a2c5b551b7e03b427874a67bf1fd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

41eb2780f6be7ec375779ce382469028_JaffaCakes118
Size

313KB
Sample

240514-scs5aabg2w
MD5

41eb2780f6be7ec375779ce382469028
SHA1

692ea7a1edf39e61fb454f77fc6c9a433ac2bc70
SHA256

155284c8512dbfee2dee89fc3e28d23216a9a2c5b551b7e03b427874a67bf1fd
SHA512

d6a41e366bb7101fee428ca3ab32f734e0d3a159ee69d25667e062a4858b0129f267975dd783a294ba0196d1e2eb75beebede5cdddb2b3aef9a3f7351ad8e756
SSDEEP

6144:hrb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMA:hrRu6/eIo4t3PuFITKUAT

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  41eb2780f6be7ec375779ce382469028_JaffaCakes118
- Size
  
  313KB
- MD5
  
  41eb2780f6be7ec375779ce382469028
- SHA1
  
  692ea7a1edf39e61fb454f77fc6c9a433ac2bc70
- SHA256
  
  155284c8512dbfee2dee89fc3e28d23216a9a2c5b551b7e03b427874a67bf1fd
- SHA512
  
  d6a41e366bb7101fee428ca3ab32f734e0d3a159ee69d25667e062a4858b0129f267975dd783a294ba0196d1e2eb75beebede5cdddb2b3aef9a3f7351ad8e756
- SSDEEP
  
  6144:hrb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMA:hrRu6/eIo4t3PuFITKUAT
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2