777dfeb44c024e6aa2491a524e2d7bf5791cee83d3ef3cbefdfee573a1c5c201 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6a741f1d02adf42d4b00acd3069b8925_JaffaCakes118
Size

416KB
Sample

240523-k7mxrabf7y
MD5

6a741f1d02adf42d4b00acd3069b8925
SHA1

f8203e5f7c3dadbb3a99706945de4f9280bb0295
SHA256

777dfeb44c024e6aa2491a524e2d7bf5791cee83d3ef3cbefdfee573a1c5c201
SHA512

43a4f3c2eeab451fd4e8f1fe37bca16e10b749cb0afd1305d23a933f0365aa44629cd66c2346dc53a71a21261865bb759398624acc6e7efb3dec9540a386f2c0
SSDEEP

6144:EyRbe0G4hM61nBOeo95sA1lpkitzeHX7/lDY+2cv07Moo4QyDjF1bjVxzt6tm:Eyde14hbjc5sKciU7lDY+ozkI/xzom

Score

9^/10

evasion

Malware Config

Targets

- Target
  
  6a741f1d02adf42d4b00acd3069b8925_JaffaCakes118
- Size
  
  416KB
- MD5
  
  6a741f1d02adf42d4b00acd3069b8925
- SHA1
  
  f8203e5f7c3dadbb3a99706945de4f9280bb0295
- SHA256
  
  777dfeb44c024e6aa2491a524e2d7bf5791cee83d3ef3cbefdfee573a1c5c201
- SHA512
  
  43a4f3c2eeab451fd4e8f1fe37bca16e10b749cb0afd1305d23a933f0365aa44629cd66c2346dc53a71a21261865bb759398624acc6e7efb3dec9540a386f2c0
- SSDEEP
  
  6144:EyRbe0G4hM61nBOeo95sA1lpkitzeHX7/lDY+2cv07Moo4QyDjF1bjVxzt6tm:Eyde14hbjc5sKciU7lDY+ozkI/xzom
Score

9^/10

evasion
- Checks for common network interception software
  Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
  evasion
- Enumerates VirtualBox registry keys
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Software Discovery

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2