a04c8077ec6cf3a954404f61e6480d358cb276ecba3fc5662bf8d399bb5c6562 | Triage

Sharing

General

Target

69e11bac5dec750fe593345e04598a49_JaffaCakes118
Size

318KB
Sample

240523-f5ar7afb64
MD5

69e11bac5dec750fe593345e04598a49
SHA1

c5755f95fa0b5b131cb737c8a9e31f654e770f53
SHA256

a04c8077ec6cf3a954404f61e6480d358cb276ecba3fc5662bf8d399bb5c6562
SHA512

76c6f11b23fc10d650c2e0c2bb6f0fcaa76a47a2a10482c0be35bef1f7fa7d30cb1bea58c956e9067559acabf43913eee02ce073333e77d30679c4bc9b8cf93b
SSDEEP

6144:uW4Na9kBizM/Rbir/2TEGzS5nrUJMsyV5:uWyoa/FirnGzgGMTV5

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  69e11bac5dec750fe593345e04598a49_JaffaCakes118
- Size
  
  318KB
- MD5
  
  69e11bac5dec750fe593345e04598a49
- SHA1
  
  c5755f95fa0b5b131cb737c8a9e31f654e770f53
- SHA256
  
  a04c8077ec6cf3a954404f61e6480d358cb276ecba3fc5662bf8d399bb5c6562
- SHA512
  
  76c6f11b23fc10d650c2e0c2bb6f0fcaa76a47a2a10482c0be35bef1f7fa7d30cb1bea58c956e9067559acabf43913eee02ce073333e77d30679c4bc9b8cf93b
- SSDEEP
  
  6144:uW4Na9kBizM/Rbir/2TEGzS5nrUJMsyV5:uWyoa/FirnGzgGMTV5
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2