d414f76300d88dfd94aa7fa8892845f386253a79338fa10a8d2ff89b488cc7d4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a139494fa7a973d42a91a237c0f4837e_JaffaCakes118
Size

313KB
Sample

240612-ta25vavbjl
MD5

a139494fa7a973d42a91a237c0f4837e
SHA1

d9b7cb55dd4b3e73d0bc3d1cacce36be88f3dabc
SHA256

d414f76300d88dfd94aa7fa8892845f386253a79338fa10a8d2ff89b488cc7d4
SHA512

6669b9a20f01ee6bb327bdaa4197522bb5721be3dff3c142007dade583f4a2577a372cf056842b8a28d7a00e18557aba70c7c9b5a8750969967256206ea4ab3a
SSDEEP

6144:prb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMc:prRu6/eIo4t3PuFITKUAn

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a139494fa7a973d42a91a237c0f4837e_JaffaCakes118
- Size
  
  313KB
- MD5
  
  a139494fa7a973d42a91a237c0f4837e
- SHA1
  
  d9b7cb55dd4b3e73d0bc3d1cacce36be88f3dabc
- SHA256
  
  d414f76300d88dfd94aa7fa8892845f386253a79338fa10a8d2ff89b488cc7d4
- SHA512
  
  6669b9a20f01ee6bb327bdaa4197522bb5721be3dff3c142007dade583f4a2577a372cf056842b8a28d7a00e18557aba70c7c9b5a8750969967256206ea4ab3a
- SSDEEP
  
  6144:prb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMc:prRu6/eIo4t3PuFITKUAn
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2