80f18f35930b9ffeabaee2dbf5af2c18825b2b67f7e7f5e2ce4f421269411565 | Triage

Sharing

General

Target

6917b99f4eb57f4e805e9ecd99ab583e_JaffaCakes118
Size

1.1MB
Sample

240523-aev3jseb7z
MD5

6917b99f4eb57f4e805e9ecd99ab583e
SHA1

0d39ac3c22748826722292240f99e91073da7e71
SHA256

80f18f35930b9ffeabaee2dbf5af2c18825b2b67f7e7f5e2ce4f421269411565
SHA512

90cbe34b5a8b52159ee9bd3feb359d9c25eed4a85ef2a8cfe970580a0c623c98be6894651c2b38604ae99eb3d05d2a5a226e68d074ea61bbc3235f7316efebbe
SSDEEP

12288:Exm03dDATu3TtKUhG3QQkrEcdvMqH1dznOotRldDfHbg5+MH/QTK7ufrncquNGs:EgS73RKUsaVdzOotdDfStfsKafIgs

Score

7^/10

Malware Config

Targets

- Target
  
  6917b99f4eb57f4e805e9ecd99ab583e_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  6917b99f4eb57f4e805e9ecd99ab583e
- SHA1
  
  0d39ac3c22748826722292240f99e91073da7e71
- SHA256
  
  80f18f35930b9ffeabaee2dbf5af2c18825b2b67f7e7f5e2ce4f421269411565
- SHA512
  
  90cbe34b5a8b52159ee9bd3feb359d9c25eed4a85ef2a8cfe970580a0c623c98be6894651c2b38604ae99eb3d05d2a5a226e68d074ea61bbc3235f7316efebbe
- SSDEEP
  
  12288:Exm03dDATu3TtKUhG3QQkrEcdvMqH1dznOotRldDfHbg5+MH/QTK7ufrncquNGs:EgS73RKUsaVdzOotdDfStfsKafIgs
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2