dae206ef85bbd2a419c6c1e616c3e42fb298b21a332a32123c5e6b46518c37d8 | Triage

Sharing

General

Target

63f58a03206b8df91e6ea443b7ee2b47_JaffaCakes118
Size

4.6MB
Sample

240521-tyk68sbf73
MD5

63f58a03206b8df91e6ea443b7ee2b47
SHA1

bbaf76a0543914a0880ce7abf9c1a1a301cd6a7b
SHA256

dae206ef85bbd2a419c6c1e616c3e42fb298b21a332a32123c5e6b46518c37d8
SHA512

d3698a5ea7140b3128df731e687a48141c0a7e76c16a31ba0a7cfae9fa770b517720efd062729ebeec80892394608ebc0b3e08038cfca5969d4ecd156aed18bd
SSDEEP

98304:YErpgKZV1h8JyBiNLc5+Jd1mGoM7wdf+Hqg1nmV2HZCkS73P2E9Ak0gK:3pTfpBiN8+Jd13kdGHnF5TMVAk0T

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  63f58a03206b8df91e6ea443b7ee2b47_JaffaCakes118
- Size
  
  4.6MB
- MD5
  
  63f58a03206b8df91e6ea443b7ee2b47
- SHA1
  
  bbaf76a0543914a0880ce7abf9c1a1a301cd6a7b
- SHA256
  
  dae206ef85bbd2a419c6c1e616c3e42fb298b21a332a32123c5e6b46518c37d8
- SHA512
  
  d3698a5ea7140b3128df731e687a48141c0a7e76c16a31ba0a7cfae9fa770b517720efd062729ebeec80892394608ebc0b3e08038cfca5969d4ecd156aed18bd
- SSDEEP
  
  98304:YErpgKZV1h8JyBiNLc5+Jd1mGoM7wdf+Hqg1nmV2HZCkS73P2E9Ak0gK:3pTfpBiN8+Jd13kdGHnF5TMVAk0T
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2