a79817ea902f0a9330379659b76fa18a77e36d7e55fd9c38eb786f7da16ff9d0 | Triage

Sharing

General

Target

6918f784960935ac440b492fcea5b060_JaffaCakes118
Size

313KB
Sample

240523-aga56aed58
MD5

6918f784960935ac440b492fcea5b060
SHA1

582ad5eeb43ba2d6bb3c1cbcb28b3a7c5332086f
SHA256

a79817ea902f0a9330379659b76fa18a77e36d7e55fd9c38eb786f7da16ff9d0
SHA512

1af60b84fd2f634da2cb079cfe332fd13d6f983fc4e9db12d5b61d52a78b29d69f064a651528e89a618d89d0c88ba1b0b2fe0f4e949ccbfcd413d2d976f6d2e5
SSDEEP

6144:PrK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0L90:Pryu6/eIo4vMResyEf0uP9d9UG090

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6918f784960935ac440b492fcea5b060_JaffaCakes118
- Size
  
  313KB
- MD5
  
  6918f784960935ac440b492fcea5b060
- SHA1
  
  582ad5eeb43ba2d6bb3c1cbcb28b3a7c5332086f
- SHA256
  
  a79817ea902f0a9330379659b76fa18a77e36d7e55fd9c38eb786f7da16ff9d0
- SHA512
  
  1af60b84fd2f634da2cb079cfe332fd13d6f983fc4e9db12d5b61d52a78b29d69f064a651528e89a618d89d0c88ba1b0b2fe0f4e949ccbfcd413d2d976f6d2e5
- SSDEEP
  
  6144:PrK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0L90:Pryu6/eIo4vMResyEf0uP9d9UG090
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2