4c5e5087651b151e9bd2c3ebca29fbcd19660d8068b77e52a2468d8e6e242e74 | Triage

Sharing

General

Target

7d77c5f2911e2d691aa871c983e7048d_JaffaCakes118
Size

4.1MB
Sample

240528-sydaysbe43
MD5

7d77c5f2911e2d691aa871c983e7048d
SHA1

55dea5d7ebd2397d385982fd1aa8b7d1ba2ec7ae
SHA256

4c5e5087651b151e9bd2c3ebca29fbcd19660d8068b77e52a2468d8e6e242e74
SHA512

e3fc372321d7fc163ee186e4fe63080f792de88398a3c3f499717ad42370cb542b19df6d584e7a89c86b62c9295c9ad3d26507ab026d9b83e92cd38844ef984b
SSDEEP

98304:4zRsjO1OhxAgCydJg1DrmNX3R3aVviJYayOxd:yOcOhSwMrmNX3oBKYS

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  7d77c5f2911e2d691aa871c983e7048d_JaffaCakes118
- Size
  
  4.1MB
- MD5
  
  7d77c5f2911e2d691aa871c983e7048d
- SHA1
  
  55dea5d7ebd2397d385982fd1aa8b7d1ba2ec7ae
- SHA256
  
  4c5e5087651b151e9bd2c3ebca29fbcd19660d8068b77e52a2468d8e6e242e74
- SHA512
  
  e3fc372321d7fc163ee186e4fe63080f792de88398a3c3f499717ad42370cb542b19df6d584e7a89c86b62c9295c9ad3d26507ab026d9b83e92cd38844ef984b
- SSDEEP
  
  98304:4zRsjO1OhxAgCydJg1DrmNX3R3aVviJYayOxd:yOcOhSwMrmNX3oBKYS
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2