05bdb12565aaaa09598a298459770d1c24f0a00e64c347ff55f3be9ff8aba727 | Triage

Sharing

General

Target

65569d97181cd416cfc63e17d28b92cc_JaffaCakes118
Size

258KB
Sample

240522-asggbaeg26
MD5

65569d97181cd416cfc63e17d28b92cc
SHA1

66e7e8b13ba1992dddbe30c095cec312998fbe5a
SHA256

05bdb12565aaaa09598a298459770d1c24f0a00e64c347ff55f3be9ff8aba727
SHA512

b7e44b1592f012d0cfc14441270b2ee5f09b5b465c25c62c83ed4cfc25e61e0c564b3b697aafe44a02628cc00727cbf41ecde3f7877625d96ae717dac38a5cc9
SSDEEP

6144:3Igx8pG3kvKek0KnZxidhLnipQFaeFVviYdCBw:4gh3Mnkdx+h7ipmZdCBw

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  65569d97181cd416cfc63e17d28b92cc_JaffaCakes118
- Size
  
  258KB
- MD5
  
  65569d97181cd416cfc63e17d28b92cc
- SHA1
  
  66e7e8b13ba1992dddbe30c095cec312998fbe5a
- SHA256
  
  05bdb12565aaaa09598a298459770d1c24f0a00e64c347ff55f3be9ff8aba727
- SHA512
  
  b7e44b1592f012d0cfc14441270b2ee5f09b5b465c25c62c83ed4cfc25e61e0c564b3b697aafe44a02628cc00727cbf41ecde3f7877625d96ae717dac38a5cc9
- SSDEEP
  
  6144:3Igx8pG3kvKek0KnZxidhLnipQFaeFVviYdCBw:4gh3Mnkdx+h7ipmZdCBw
Score

7^/10

discovery
- Executes dropped EXE
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2