789055fb12b1a56310eefa3d2fc36cd7539cf29902d8262aab65d45278f5fbfe | Triage

Sharing

General

Target

69e9c88dd4d15a6fd8db8434b5d1ea5a_JaffaCakes118
Size

313KB
Sample

240523-gdknrafd88
MD5

69e9c88dd4d15a6fd8db8434b5d1ea5a
SHA1

b260223322db5d9bdd28d32f58e3968b2d69dfa1
SHA256

789055fb12b1a56310eefa3d2fc36cd7539cf29902d8262aab65d45278f5fbfe
SHA512

509fd3ee4c64c4bd6c683e66c0b4ded69106ad4f1be4f950c0cc2d7eb1bf92b278aad76fb01d33b3d5cbe1a3bce1341034928c7defbc7f8e4f8eb464291bf40a
SSDEEP

6144:3rK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0LL:3ryu6/eIo4vMResyEf0uP9d9UG0L

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  69e9c88dd4d15a6fd8db8434b5d1ea5a_JaffaCakes118
- Size
  
  313KB
- MD5
  
  69e9c88dd4d15a6fd8db8434b5d1ea5a
- SHA1
  
  b260223322db5d9bdd28d32f58e3968b2d69dfa1
- SHA256
  
  789055fb12b1a56310eefa3d2fc36cd7539cf29902d8262aab65d45278f5fbfe
- SHA512
  
  509fd3ee4c64c4bd6c683e66c0b4ded69106ad4f1be4f950c0cc2d7eb1bf92b278aad76fb01d33b3d5cbe1a3bce1341034928c7defbc7f8e4f8eb464291bf40a
- SSDEEP
  
  6144:3rK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0LL:3ryu6/eIo4vMResyEf0uP9d9UG0L
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2