23968e70e425c785c60cca2293f0ddf3d173bec892527b632ebc1637f9e8db87 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a4401d43e1a52dafb6e28499e199e7b4_JaffaCakes118
Size

220KB
Sample

240613-hfmfsssaqp
MD5

a4401d43e1a52dafb6e28499e199e7b4
SHA1

fe4ea12e27988df15f02282cb3a24f31ea3743c4
SHA256

23968e70e425c785c60cca2293f0ddf3d173bec892527b632ebc1637f9e8db87
SHA512

a47c7cf780ac7ac78c5142e41f2868b2d48ac8e0c8122363626f5753f97ee2f7c6a09902cf34a90ea345fbb3bd615449e23f615e9098a42a98277bbc3e3fd1d1
SSDEEP

3072:Q/4VPUtsrM8l/EqkQ1r7fTsnjlAfKRqB3T5Rp6XjDZheV5k20ZIDm:Q/4VPUmpr7fTsjlTI3Rp6XjDX65J0IDm

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  a4401d43e1a52dafb6e28499e199e7b4_JaffaCakes118
- Size
  
  220KB
- MD5
  
  a4401d43e1a52dafb6e28499e199e7b4
- SHA1
  
  fe4ea12e27988df15f02282cb3a24f31ea3743c4
- SHA256
  
  23968e70e425c785c60cca2293f0ddf3d173bec892527b632ebc1637f9e8db87
- SHA512
  
  a47c7cf780ac7ac78c5142e41f2868b2d48ac8e0c8122363626f5753f97ee2f7c6a09902cf34a90ea345fbb3bd615449e23f615e9098a42a98277bbc3e3fd1d1
- SSDEEP
  
  3072:Q/4VPUtsrM8l/EqkQ1r7fTsnjlAfKRqB3T5Rp6XjDZheV5k20ZIDm:Q/4VPUmpr7fTsjlTI3Rp6XjDX65J0IDm
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2