208e4fa7639beba7a71d134826f25dfa2925b44cc5625abf384e528b399a81aa | Triage

Sharing

General

Target

69e77e6a1a8b69f32543733567cbc073_JaffaCakes118
Size

255KB
Sample

240523-ga8leafd4w
MD5

69e77e6a1a8b69f32543733567cbc073
SHA1

b85d0a9f37c6a852b831c026caddd1a39685fa93
SHA256

208e4fa7639beba7a71d134826f25dfa2925b44cc5625abf384e528b399a81aa
SHA512

5acf3e5556f8b0c85ed45509d814d8958df60b9889045e9512345951b0a814c34665c4e559de1615a0994219b45424987681ee2a28218e2e761378bea8a875ce
SSDEEP

6144:EF9t9m+0b66dDTBhzpZms0MbqU0CVY1clryt3oiu:EVc+0JPpSMbqU0ME3oiu

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  69e77e6a1a8b69f32543733567cbc073_JaffaCakes118
- Size
  
  255KB
- MD5
  
  69e77e6a1a8b69f32543733567cbc073
- SHA1
  
  b85d0a9f37c6a852b831c026caddd1a39685fa93
- SHA256
  
  208e4fa7639beba7a71d134826f25dfa2925b44cc5625abf384e528b399a81aa
- SHA512
  
  5acf3e5556f8b0c85ed45509d814d8958df60b9889045e9512345951b0a814c34665c4e559de1615a0994219b45424987681ee2a28218e2e761378bea8a875ce
- SSDEEP
  
  6144:EF9t9m+0b66dDTBhzpZms0MbqU0CVY1clryt3oiu:EVc+0JPpSMbqU0ME3oiu
Score

7^/10

discovery
- Executes dropped EXE
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2