1326a954742ff18a037735683c2f5d6364425dda02de1fa419301f559bdf8ac6 | Triage

Sharing

General

Target

695beda03c8e3503e699ab1f4686b136_JaffaCakes118
Size

538KB
Sample

240523-cbw7jshf74
MD5

695beda03c8e3503e699ab1f4686b136
SHA1

07380969d0b9636f917e9b01f0242438166467b4
SHA256

1326a954742ff18a037735683c2f5d6364425dda02de1fa419301f559bdf8ac6
SHA512

647a9f07798cc7c7d22d976510d7a60e52326f5e138ca96ee9fe51eb4dadf4813bc4dc9761d892611ea96bfa3c21f068218a8f5a88c12fca5af87ba585b54f29
SSDEEP

12288:dJEsVabAKwq9L6lVh3yMj3tndVP7dIAAYQatzkXnou0V:csV+AKX6VhiMj3RPd7RtzeobV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  695beda03c8e3503e699ab1f4686b136_JaffaCakes118
- Size
  
  538KB
- MD5
  
  695beda03c8e3503e699ab1f4686b136
- SHA1
  
  07380969d0b9636f917e9b01f0242438166467b4
- SHA256
  
  1326a954742ff18a037735683c2f5d6364425dda02de1fa419301f559bdf8ac6
- SHA512
  
  647a9f07798cc7c7d22d976510d7a60e52326f5e138ca96ee9fe51eb4dadf4813bc4dc9761d892611ea96bfa3c21f068218a8f5a88c12fca5af87ba585b54f29
- SSDEEP
  
  12288:dJEsVabAKwq9L6lVh3yMj3tndVP7dIAAYQatzkXnou0V:csV+AKX6VhiMj3RPd7RtzeobV
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2