067fb70d6b43b6377cf0ad8208fc8ce0fdb8ee7a5bad0b33dc74abcd409ab499 | Triage

Sharing

General

Target

6586451fabfa0c88a1f7082096b93d1d_JaffaCakes118
Size

258KB
Sample

240522-bv4v3aga43
MD5

6586451fabfa0c88a1f7082096b93d1d
SHA1

f3cd65c5840a282daf397a7598ae2993b1cddef7
SHA256

067fb70d6b43b6377cf0ad8208fc8ce0fdb8ee7a5bad0b33dc74abcd409ab499
SHA512

327a9ce1c46227578e8519196aaff84f28cf515f190a0f5f1ccf1f79f685d05a431cd01242fa1e4d3115962f90e2e49537dd6d552161715a0c41d0fd6f8356b8
SSDEEP

6144:w9oS/RRbb1nKggC7pHuutLa4Q4Y5YtpyW8hl40ND2:w9TRbKggOHuELa4Q4eYtoW8/4OD2

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6586451fabfa0c88a1f7082096b93d1d_JaffaCakes118
- Size
  
  258KB
- MD5
  
  6586451fabfa0c88a1f7082096b93d1d
- SHA1
  
  f3cd65c5840a282daf397a7598ae2993b1cddef7
- SHA256
  
  067fb70d6b43b6377cf0ad8208fc8ce0fdb8ee7a5bad0b33dc74abcd409ab499
- SHA512
  
  327a9ce1c46227578e8519196aaff84f28cf515f190a0f5f1ccf1f79f685d05a431cd01242fa1e4d3115962f90e2e49537dd6d552161715a0c41d0fd6f8356b8
- SSDEEP
  
  6144:w9oS/RRbb1nKggC7pHuutLa4Q4Y5YtpyW8hl40ND2:w9TRbKggOHuELa4Q4eYtoW8/4OD2
Score

7^/10

discovery
- Executes dropped EXE
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2