12b9df2aa3fdd306da370741eadde9e756dce306876f73b355350b5a663c537a | Triage

Sharing

General

Target

69b320257a710a16c03a589459df504e_JaffaCakes118
Size

258KB
Sample

240523-evrghsde7x
MD5

69b320257a710a16c03a589459df504e
SHA1

3b4baa98ea743580cac6f3cff251e7bd98011eaf
SHA256

12b9df2aa3fdd306da370741eadde9e756dce306876f73b355350b5a663c537a
SHA512

a443ec90ba1f14cc406b3462b3ec38b75b13016546c9505e806ac550bd1043a235bf805db5f68a889a6a5eff3fb08bf1c31e930812a3cd5581e25b59fe0a030c
SSDEEP

3072:38+g1CvAqReXVbfQEBP3BO+WSRcR1kiVfUyL84OiaYKbekKCVc9q55BjDsmKI8/c:38+gkrKDz8QODccML+9qv94mM3w5F

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  69b320257a710a16c03a589459df504e_JaffaCakes118
- Size
  
  258KB
- MD5
  
  69b320257a710a16c03a589459df504e
- SHA1
  
  3b4baa98ea743580cac6f3cff251e7bd98011eaf
- SHA256
  
  12b9df2aa3fdd306da370741eadde9e756dce306876f73b355350b5a663c537a
- SHA512
  
  a443ec90ba1f14cc406b3462b3ec38b75b13016546c9505e806ac550bd1043a235bf805db5f68a889a6a5eff3fb08bf1c31e930812a3cd5581e25b59fe0a030c
- SSDEEP
  
  3072:38+g1CvAqReXVbfQEBP3BO+WSRcR1kiVfUyL84OiaYKbekKCVc9q55BjDsmKI8/c:38+gkrKDz8QODccML+9qv94mM3w5F
Score

7^/10

discovery
- Executes dropped EXE
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2