42b9b65db22dfb4ebec47cd24c50b5777339e1f3843bcdf88c87f16310e73195 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7b99807a7143ad4737d3540a4f7a0498_JaffaCakes118
Size

313KB
Sample

240528-eejrqsdg2w
MD5

7b99807a7143ad4737d3540a4f7a0498
SHA1

c1c8c81d53c50b51803e970f125709e2c2a61b02
SHA256

42b9b65db22dfb4ebec47cd24c50b5777339e1f3843bcdf88c87f16310e73195
SHA512

a94f97f0d545421ec207ea84b5c1728430fb5f7d10ad6fd2d44a4f26d14844c375c1eca280655eef2f70859a25e97e50297743a60b4ec38f9a444e2eebfab9a8
SSDEEP

6144:ArkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYq:Ark4u6/eIo4nlu7trxFtApfgMyrpjYq

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  7b99807a7143ad4737d3540a4f7a0498_JaffaCakes118
- Size
  
  313KB
- MD5
  
  7b99807a7143ad4737d3540a4f7a0498
- SHA1
  
  c1c8c81d53c50b51803e970f125709e2c2a61b02
- SHA256
  
  42b9b65db22dfb4ebec47cd24c50b5777339e1f3843bcdf88c87f16310e73195
- SHA512
  
  a94f97f0d545421ec207ea84b5c1728430fb5f7d10ad6fd2d44a4f26d14844c375c1eca280655eef2f70859a25e97e50297743a60b4ec38f9a444e2eebfab9a8
- SSDEEP
  
  6144:ArkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYq:Ark4u6/eIo4nlu7trxFtApfgMyrpjYq
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2