22aa1003fad7a0a4bb93602b80a736c151b6bdc98dcd820058ec5a5bd7d43816 | Triage

Sharing

General

Target

8f35cd6d022af3ce1b88bc1c3310d744_JaffaCakes118
Size

314KB
Sample

240602-ygeqcacg8z
MD5

8f35cd6d022af3ce1b88bc1c3310d744
SHA1

171f04bbd599ec55a04fb5b5dae604429cd4c9a9
SHA256

22aa1003fad7a0a4bb93602b80a736c151b6bdc98dcd820058ec5a5bd7d43816
SHA512

96c91832878fbcc692832a0c83357bbda0de78b1d03b765fa4b15975e353fadb33e1aa8d3436754915ce2cf5ef48838334a3d7959e3eb9149b1d3301f342ec13
SSDEEP

6144:grAbUzkuvcBYC47l2xn88NEymFTYO67qzVxzRRwc:gr1kuveY35YO67Wxz7wc

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8f35cd6d022af3ce1b88bc1c3310d744_JaffaCakes118
- Size
  
  314KB
- MD5
  
  8f35cd6d022af3ce1b88bc1c3310d744
- SHA1
  
  171f04bbd599ec55a04fb5b5dae604429cd4c9a9
- SHA256
  
  22aa1003fad7a0a4bb93602b80a736c151b6bdc98dcd820058ec5a5bd7d43816
- SHA512
  
  96c91832878fbcc692832a0c83357bbda0de78b1d03b765fa4b15975e353fadb33e1aa8d3436754915ce2cf5ef48838334a3d7959e3eb9149b1d3301f342ec13
- SSDEEP
  
  6144:grAbUzkuvcBYC47l2xn88NEymFTYO67qzVxzRRwc:gr1kuveY35YO67Wxz7wc
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2