0f25926c99b04a9040b16b3f6e4380012c19a82ff84a5155f243dc8ff8de7e07 | Triage

Sharing

General

Target

69324a233140a1bfe46b820b48d9c0b6_JaffaCakes118
Size

316KB
Sample

240523-a66ncsfe78
MD5

69324a233140a1bfe46b820b48d9c0b6
SHA1

edb63cd89d1acad5c8df40c4f6779d1f39fab29c
SHA256

0f25926c99b04a9040b16b3f6e4380012c19a82ff84a5155f243dc8ff8de7e07
SHA512

bd4bd4442dae2cdf8443689c6c45e8dd3209d757257bd15603409f2a3da2447d0ed07f107443db06404f6fa9f821dace713bc1cefccef3d99e1f2e627d8217d4
SSDEEP

6144:5rvbUzkuvcBYC47l2xmDZH4xBsprVIvThDm9FdAZ+x99wVH4:5rkkuveY3zhlV6tmDxzwVY

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  69324a233140a1bfe46b820b48d9c0b6_JaffaCakes118
- Size
  
  316KB
- MD5
  
  69324a233140a1bfe46b820b48d9c0b6
- SHA1
  
  edb63cd89d1acad5c8df40c4f6779d1f39fab29c
- SHA256
  
  0f25926c99b04a9040b16b3f6e4380012c19a82ff84a5155f243dc8ff8de7e07
- SHA512
  
  bd4bd4442dae2cdf8443689c6c45e8dd3209d757257bd15603409f2a3da2447d0ed07f107443db06404f6fa9f821dace713bc1cefccef3d99e1f2e627d8217d4
- SSDEEP
  
  6144:5rvbUzkuvcBYC47l2xmDZH4xBsprVIvThDm9FdAZ+x99wVH4:5rkkuveY3zhlV6tmDxzwVY
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2