Overview

overview

7

Static

static

3

6a376520cb...18.exe

windows7-x64

7

6a376520cb...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6a376520cbcd6250776dc1f45b99a036_JaffaCakes118

  • Size

    313KB

  • Sample

    240523-jgg35shg3z

  • MD5

    6a376520cbcd6250776dc1f45b99a036

  • SHA1

    8407b7b856ae38dc67c6c02d6ed7c2aa8a0d6256

  • SHA256

    3d797d7682b3c6af85c924a0e3c0b4562b9d6fc6d417367be9fadce6944c0951

  • SHA512

    595ba00a714134fc45f4690413caf64ff7384b222c2e33a6abcc9381f61232d0daa358a160a00deca81106465303c97876ef4c2a7de5c11f581e1b91f5aca55a

  • SSDEEP

    6144:Iro9uEo2S1YnQmCX492DkwNP3qpYFx1PKR9bwMHCrwqdS1D/9n1v94dg:IrAu6/eIo4s1yR9lsc/adg

Score
7/10
discovery

Malware Config

Targets

    • Target

      6a376520cbcd6250776dc1f45b99a036_JaffaCakes118

    • Size

      313KB

    • MD5

      6a376520cbcd6250776dc1f45b99a036

    • SHA1

      8407b7b856ae38dc67c6c02d6ed7c2aa8a0d6256

    • SHA256

      3d797d7682b3c6af85c924a0e3c0b4562b9d6fc6d417367be9fadce6944c0951

    • SHA512

      595ba00a714134fc45f4690413caf64ff7384b222c2e33a6abcc9381f61232d0daa358a160a00deca81106465303c97876ef4c2a7de5c11f581e1b91f5aca55a

    • SSDEEP

      6144:Iro9uEo2S1YnQmCX492DkwNP3qpYFx1PKR9bwMHCrwqdS1D/9n1v94dg:IrAu6/eIo4s1yR9lsc/adg

    Score
    7/10
    discovery

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks