861a8403696797f60e4ab3daa3fa40fbad40af70c6666aee07b9d972dc13ff07 | Triage

Sharing

General

Target

916b216c1fa2ff5a8a8a4b4950b8f104_JaffaCakes118
Size

304KB
Sample

240603-mbfjxacc74
MD5

916b216c1fa2ff5a8a8a4b4950b8f104
SHA1

26b55973bdbd057692c743c2907841c2b355e837
SHA256

861a8403696797f60e4ab3daa3fa40fbad40af70c6666aee07b9d972dc13ff07
SHA512

4019befee39de2e77e190ab3c6ca9efc9594f779d3eb0ac00b49d0aa8f505e60df369c79cf14d27402e608bfef5512f68dd97cb1b131b4957d671a7dc2dd9e9f
SSDEEP

6144:1rkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPW:1rkuu6/eIo4tQW62T+uTwM6YVxm24W

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  916b216c1fa2ff5a8a8a4b4950b8f104_JaffaCakes118
- Size
  
  304KB
- MD5
  
  916b216c1fa2ff5a8a8a4b4950b8f104
- SHA1
  
  26b55973bdbd057692c743c2907841c2b355e837
- SHA256
  
  861a8403696797f60e4ab3daa3fa40fbad40af70c6666aee07b9d972dc13ff07
- SHA512
  
  4019befee39de2e77e190ab3c6ca9efc9594f779d3eb0ac00b49d0aa8f505e60df369c79cf14d27402e608bfef5512f68dd97cb1b131b4957d671a7dc2dd9e9f
- SSDEEP
  
  6144:1rkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPW:1rkuu6/eIo4tQW62T+uTwM6YVxm24W
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2