11dbc1787da9a5e5dbaae7ab798cfe0152cc66d389f16e73b3d9554d264bf5e2 | Triage

Sharing

General

Target

6403f04dd8f1f02fbdd48a250cb50eea_JaffaCakes118
Size

254KB
Sample

240521-t912tsca83
MD5

6403f04dd8f1f02fbdd48a250cb50eea
SHA1

43d682da5358b35f2c32be1fd43cde519989e8e3
SHA256

11dbc1787da9a5e5dbaae7ab798cfe0152cc66d389f16e73b3d9554d264bf5e2
SHA512

e773d7219f51fd4e2c4c552c94f1d4936a0f4f8c54eb81566ba9e5f0438ab7c751e24ecbc32483f3e9e5074dfa51c926258bc0700246f5f98799ee2e780d0dd7
SSDEEP

6144:yCvnbFWwQsi+ptk2mIDqH12hvHz+BWae54720:yCPRdH3r5DqayWy720

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  6403f04dd8f1f02fbdd48a250cb50eea_JaffaCakes118
- Size
  
  254KB
- MD5
  
  6403f04dd8f1f02fbdd48a250cb50eea
- SHA1
  
  43d682da5358b35f2c32be1fd43cde519989e8e3
- SHA256
  
  11dbc1787da9a5e5dbaae7ab798cfe0152cc66d389f16e73b3d9554d264bf5e2
- SHA512
  
  e773d7219f51fd4e2c4c552c94f1d4936a0f4f8c54eb81566ba9e5f0438ab7c751e24ecbc32483f3e9e5074dfa51c926258bc0700246f5f98799ee2e780d0dd7
- SSDEEP
  
  6144:yCvnbFWwQsi+ptk2mIDqH12hvHz+BWae54720:yCPRdH3r5DqayWy720
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2