200c65197f46c7d5a88c16ce9a6c4d6887a3be7d249126efa7074bb92a2695f1 | Triage

Sharing

General

Target

69bca34ab1bf3ff6d8afcfa7bc8faf15_JaffaCakes118
Size

259KB
Sample

240523-e7kjqsea74
MD5

69bca34ab1bf3ff6d8afcfa7bc8faf15
SHA1

6cecdba8e574789c314fc05e454ac3530f58aa85
SHA256

200c65197f46c7d5a88c16ce9a6c4d6887a3be7d249126efa7074bb92a2695f1
SHA512

ee85bbf2bf5b10269776463a9df9f3ba98dc21ed67850dca39245256bb659a06fa43eefb3a409aa2deeb6bcc40e6876c3cf5412f81edc9260f0a4ffb6283715a
SSDEEP

6144:VCX9PryV1VG12i10b4DApRRKLhNGDXEUo2sbjXv7:VAZryVF4oshM3o2sbjXv7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  69bca34ab1bf3ff6d8afcfa7bc8faf15_JaffaCakes118
- Size
  
  259KB
- MD5
  
  69bca34ab1bf3ff6d8afcfa7bc8faf15
- SHA1
  
  6cecdba8e574789c314fc05e454ac3530f58aa85
- SHA256
  
  200c65197f46c7d5a88c16ce9a6c4d6887a3be7d249126efa7074bb92a2695f1
- SHA512
  
  ee85bbf2bf5b10269776463a9df9f3ba98dc21ed67850dca39245256bb659a06fa43eefb3a409aa2deeb6bcc40e6876c3cf5412f81edc9260f0a4ffb6283715a
- SSDEEP
  
  6144:VCX9PryV1VG12i10b4DApRRKLhNGDXEUo2sbjXv7:VAZryVF4oshM3o2sbjXv7
Score

7^/10

discovery
- Executes dropped EXE
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2