3f71d07873683a7fc80a9b748221062cc6d03515dc774a4aa34b447cd1c73611 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

510af1e2f052fd88dc7903d4b92ab5eb_JaffaCakes118
Size

316KB
Sample

240517-xvxbwaeb3s
MD5

510af1e2f052fd88dc7903d4b92ab5eb
SHA1

60639bc7a1cabcbf6ae0328e3061955f3d5cddcc
SHA256

3f71d07873683a7fc80a9b748221062cc6d03515dc774a4aa34b447cd1c73611
SHA512

210d433c1cdd87d50a16df0d67773ec62ab8b1906e887d07665a367d52d8fba18f814405ccdf997d8172c1abf9321862f62feffd0efa3979342c336793883af7
SSDEEP

6144:br/bUzkuvcBYC47l2xij4YTfpczmap8spMPed0VdtM9BdjhYH:br0kuveY3cY1cia66MGd0Vs9BdNs

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  510af1e2f052fd88dc7903d4b92ab5eb_JaffaCakes118
- Size
  
  316KB
- MD5
  
  510af1e2f052fd88dc7903d4b92ab5eb
- SHA1
  
  60639bc7a1cabcbf6ae0328e3061955f3d5cddcc
- SHA256
  
  3f71d07873683a7fc80a9b748221062cc6d03515dc774a4aa34b447cd1c73611
- SHA512
  
  210d433c1cdd87d50a16df0d67773ec62ab8b1906e887d07665a367d52d8fba18f814405ccdf997d8172c1abf9321862f62feffd0efa3979342c336793883af7
- SSDEEP
  
  6144:br/bUzkuvcBYC47l2xij4YTfpczmap8spMPed0VdtM9BdjhYH:br0kuveY3cY1cia66MGd0Vs9BdNs
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2