05494bf6785c71ee364d16fa2ce7e1e413cef554b8ad3bd0683eef82989d1544 | Triage

Sharing

General

Target

6f309ecd2192218286f6ea11f5132c49_JaffaCakes118
Size

322KB
Sample

240524-veclesce61
MD5

6f309ecd2192218286f6ea11f5132c49
SHA1

3f73b661da2d74f94f3280cdb447cbc8fc0f3feb
SHA256

05494bf6785c71ee364d16fa2ce7e1e413cef554b8ad3bd0683eef82989d1544
SHA512

e71f95bd47c2e327a9f4c8f889ca03046645812f07275b0e90859f1b6944853b7ef8e958e7e5650dc91b85a4ea320528c018fc122ce4b74074f9d6bb5411f484
SSDEEP

6144:RKLXINcT8AJcEqBd6cPTmdfqY8n2DMAxLy7TYjwp2+eDuCWiNB:RKTzTPJGBd6cKdCY+2DTLywp+eRNB

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  6f309ecd2192218286f6ea11f5132c49_JaffaCakes118
- Size
  
  322KB
- MD5
  
  6f309ecd2192218286f6ea11f5132c49
- SHA1
  
  3f73b661da2d74f94f3280cdb447cbc8fc0f3feb
- SHA256
  
  05494bf6785c71ee364d16fa2ce7e1e413cef554b8ad3bd0683eef82989d1544
- SHA512
  
  e71f95bd47c2e327a9f4c8f889ca03046645812f07275b0e90859f1b6944853b7ef8e958e7e5650dc91b85a4ea320528c018fc122ce4b74074f9d6bb5411f484
- SSDEEP
  
  6144:RKLXINcT8AJcEqBd6cPTmdfqY8n2DMAxLy7TYjwp2+eDuCWiNB:RKTzTPJGBd6cKdCY+2DTLywp+eRNB
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2