10dc95e277071cc645e2cadf478e77576c3c26f8bdd16bb1886fcd6ad0dc62d5 | Triage

Sharing

General

Target

694460f029e15c051061b04408bde57a_JaffaCakes118
Size

672KB
Sample

240523-bqe15sge45
MD5

694460f029e15c051061b04408bde57a
SHA1

ac25ca4544284e14762c2335582ff4256c93a4b0
SHA256

10dc95e277071cc645e2cadf478e77576c3c26f8bdd16bb1886fcd6ad0dc62d5
SHA512

64125f7a09825b7410eca823c3c520aa1a85b6e5b0573f79c0ac007932c39cec577d66b73fd8680a9d3831eff19879a7c45a1151b94720ef19173b2be4dfa106
SSDEEP

12288:HyjzsSygIlP4TaZHr2cdLYHvwKK1qFSl7ztVSCa7zHW/wT3URL3G5YQuzc9R:HGQTMaZTIIPJtsCa7z2kU13iYQuzc9R

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  694460f029e15c051061b04408bde57a_JaffaCakes118
- Size
  
  672KB
- MD5
  
  694460f029e15c051061b04408bde57a
- SHA1
  
  ac25ca4544284e14762c2335582ff4256c93a4b0
- SHA256
  
  10dc95e277071cc645e2cadf478e77576c3c26f8bdd16bb1886fcd6ad0dc62d5
- SHA512
  
  64125f7a09825b7410eca823c3c520aa1a85b6e5b0573f79c0ac007932c39cec577d66b73fd8680a9d3831eff19879a7c45a1151b94720ef19173b2be4dfa106
- SSDEEP
  
  12288:HyjzsSygIlP4TaZHr2cdLYHvwKK1qFSl7ztVSCa7zHW/wT3URL3G5YQuzc9R:HGQTMaZTIIPJtsCa7z2kU13iYQuzc9R
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2