05ad7496aa9a3298f3efa77be8a4e6908230aaeba316de45c5c4051dab68cc0b | Triage

Sharing

General

Target

68f497c7684e5b7daedb4a65842076c5_JaffaCakes118
Size

327KB
Sample

240522-25w63scf32
MD5

68f497c7684e5b7daedb4a65842076c5
SHA1

dd0ddef6561fb124f0b14d6860ea4e48aa64d7fa
SHA256

05ad7496aa9a3298f3efa77be8a4e6908230aaeba316de45c5c4051dab68cc0b
SHA512

737c7e8f3473ecdce1f055a147e77d1e81d58dc0d3129666fefc441c70742638dfb6c6b4f9d2dedd8e08e50c87827104f2201c890cffa69b46f2cb92bed22ec1
SSDEEP

6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fa4:Rr4iu6/eIo4Rsw33AtsmQ2

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  68f497c7684e5b7daedb4a65842076c5_JaffaCakes118
- Size
  
  327KB
- MD5
  
  68f497c7684e5b7daedb4a65842076c5
- SHA1
  
  dd0ddef6561fb124f0b14d6860ea4e48aa64d7fa
- SHA256
  
  05ad7496aa9a3298f3efa77be8a4e6908230aaeba316de45c5c4051dab68cc0b
- SHA512
  
  737c7e8f3473ecdce1f055a147e77d1e81d58dc0d3129666fefc441c70742638dfb6c6b4f9d2dedd8e08e50c87827104f2201c890cffa69b46f2cb92bed22ec1
- SSDEEP
  
  6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fa4:Rr4iu6/eIo4Rsw33AtsmQ2
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2