15acd5dac089c39d1bbd5298e09d814a6d640492caa81ac6d683974e5e2ae9c2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ac0f16381cf860e57c588d255ef8c12e_JaffaCakes118
Size

656KB
Sample

240614-3qyxss1dld
MD5

ac0f16381cf860e57c588d255ef8c12e
SHA1

f45a0fcf090dcc7a1ff9f5a42d5e03c6cb56284e
SHA256

15acd5dac089c39d1bbd5298e09d814a6d640492caa81ac6d683974e5e2ae9c2
SHA512

535f4ea2d4fa0e1b8fa199294e922f21ad33b20a53363d85561b43876cf9393ab94c7f39bfbc3971efe3e548fe9ca03cb01b83a64f22140d6263e746546fd45a
SSDEEP

12288:3JSJ5jUVkoPkHjfc68vh9cZDrt3A+kcuKgEloIAgjn1bpVTxIVmt:I5wVkEWPNA+kFKgEoIAgj1bHv

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ac0f16381cf860e57c588d255ef8c12e_JaffaCakes118
- Size
  
  656KB
- MD5
  
  ac0f16381cf860e57c588d255ef8c12e
- SHA1
  
  f45a0fcf090dcc7a1ff9f5a42d5e03c6cb56284e
- SHA256
  
  15acd5dac089c39d1bbd5298e09d814a6d640492caa81ac6d683974e5e2ae9c2
- SHA512
  
  535f4ea2d4fa0e1b8fa199294e922f21ad33b20a53363d85561b43876cf9393ab94c7f39bfbc3971efe3e548fe9ca03cb01b83a64f22140d6263e746546fd45a
- SSDEEP
  
  12288:3JSJ5jUVkoPkHjfc68vh9cZDrt3A+kcuKgEloIAgjn1bpVTxIVmt:I5wVkEWPNA+kFKgEoIAgj1bHv
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2