fb82c8dfc6f8977926a196173f34a293559ddcd13faadf172f171f88adfa906c | Triage

Sharing

General

Target

4920dc560685c425f512bfb271eec79b_JaffaCakes118
Size

319KB
Sample

240516-c4at1sgh24
MD5

4920dc560685c425f512bfb271eec79b
SHA1

47702658c8cbfddc41625def9a81254578f44e45
SHA256

fb82c8dfc6f8977926a196173f34a293559ddcd13faadf172f171f88adfa906c
SHA512

5adf071765ed7f6fab0e81f9377fb87aeb4cc84cb67f0fc7b418facfa0c9512a01a8166fdb787567ecbbe379678c49a54e292f23fbedf1347685e29646504d7d
SSDEEP

6144:l6bOCI+3LpVQm40baVxCR79mj+E2PB3/LlN7P5u:lQOCvFVQTOaVxCR7caHPlD5u

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  4920dc560685c425f512bfb271eec79b_JaffaCakes118
- Size
  
  319KB
- MD5
  
  4920dc560685c425f512bfb271eec79b
- SHA1
  
  47702658c8cbfddc41625def9a81254578f44e45
- SHA256
  
  fb82c8dfc6f8977926a196173f34a293559ddcd13faadf172f171f88adfa906c
- SHA512
  
  5adf071765ed7f6fab0e81f9377fb87aeb4cc84cb67f0fc7b418facfa0c9512a01a8166fdb787567ecbbe379678c49a54e292f23fbedf1347685e29646504d7d
- SSDEEP
  
  6144:l6bOCI+3LpVQm40baVxCR79mj+E2PB3/LlN7P5u:lQOCvFVQTOaVxCR7caHPlD5u
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2