24c12bd2d486280a0e072aa4df7f41e80a43320a8ba8fbab47efd1aea3af22ef | Triage

Sharing

General

Target

6a065fdbc222cfe4ef640d2179a5b9fd_JaffaCakes118
Size

316KB
Sample

240523-g59rysgc44
MD5

6a065fdbc222cfe4ef640d2179a5b9fd
SHA1

4ef039ca7b6c8d68fb9f395125c3b28e73d1324b
SHA256

24c12bd2d486280a0e072aa4df7f41e80a43320a8ba8fbab47efd1aea3af22ef
SHA512

ed6f7edda71db3c3e952e0d4809e9c9d756d43a51510c15b58e5e6e1533dc3311b0ae28fba7f2e23f81397e94d9dbf2af3dfb6b5384f276dadefbb7f791cc2b1
SSDEEP

6144:7r/bUzkuvcBYC47l2xij4YTfpczmap8spMPed0VdtM9BdjhYi:7r0kuveY3cY1cia66MGd0Vs9BdNZ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6a065fdbc222cfe4ef640d2179a5b9fd_JaffaCakes118
- Size
  
  316KB
- MD5
  
  6a065fdbc222cfe4ef640d2179a5b9fd
- SHA1
  
  4ef039ca7b6c8d68fb9f395125c3b28e73d1324b
- SHA256
  
  24c12bd2d486280a0e072aa4df7f41e80a43320a8ba8fbab47efd1aea3af22ef
- SHA512
  
  ed6f7edda71db3c3e952e0d4809e9c9d756d43a51510c15b58e5e6e1533dc3311b0ae28fba7f2e23f81397e94d9dbf2af3dfb6b5384f276dadefbb7f791cc2b1
- SSDEEP
  
  6144:7r/bUzkuvcBYC47l2xij4YTfpczmap8spMPed0VdtM9BdjhYi:7r0kuveY3cY1cia66MGd0Vs9BdNZ
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2