105633f1a9e627b5b64c0e0d09a5c551c8eae5fd37d178376088697337cbe0ef | Triage

Sharing

General

Target

65eb461c0e25b8cd7ae91c926c7ae01a_JaffaCakes118
Size

304KB
Sample

240522-eg386abe2t
MD5

65eb461c0e25b8cd7ae91c926c7ae01a
SHA1

324b520805a62dbfaac6a9ace496862ad37e3820
SHA256

105633f1a9e627b5b64c0e0d09a5c551c8eae5fd37d178376088697337cbe0ef
SHA512

0d774ebd7d71499abdd29763215a10371b23e5bca17a746d76e7b7a216bbf31a78dde670a4cdf412ecbc1b40b68184edd3cd02d98e9bf833eed1873ab0160473
SSDEEP

6144:Trkw6Y0JQBkQRl7174NpNUM+UHs+tPvpqvpQAy+L9hMk+W60z4RRW9:Trkw63yRl1uqM+gs+tPvEpPy+rMzu9

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  65eb461c0e25b8cd7ae91c926c7ae01a_JaffaCakes118
- Size
  
  304KB
- MD5
  
  65eb461c0e25b8cd7ae91c926c7ae01a
- SHA1
  
  324b520805a62dbfaac6a9ace496862ad37e3820
- SHA256
  
  105633f1a9e627b5b64c0e0d09a5c551c8eae5fd37d178376088697337cbe0ef
- SHA512
  
  0d774ebd7d71499abdd29763215a10371b23e5bca17a746d76e7b7a216bbf31a78dde670a4cdf412ecbc1b40b68184edd3cd02d98e9bf833eed1873ab0160473
- SSDEEP
  
  6144:Trkw6Y0JQBkQRl7174NpNUM+UHs+tPvpqvpQAy+L9hMk+W60z4RRW9:Trkw63yRl1uqM+gs+tPvEpPy+rMzu9
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2