2e150d2a6a621c8420ea56a43664e43c8ad6a1ba90b65c2bb5de9aca851b7f64 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a8006b657c92ea734245c5d16567daab_JaffaCakes118
Size

313KB
Sample

240614-e12jnsvemc
MD5

a8006b657c92ea734245c5d16567daab
SHA1

da88357cc2f22b9fc76a07d701e9f7c4ebda8402
SHA256

2e150d2a6a621c8420ea56a43664e43c8ad6a1ba90b65c2bb5de9aca851b7f64
SHA512

6056927124eb4a8bda92adae7085aa3850a5a83935d292f1e9fc738cc15e908c7c40f6b2c5855f756a53bcc5697154b75efa4e4bfb636741d9207120dfa2a5c6
SSDEEP

6144:orJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDM:orfu6/eIo4jVW5soVCcQovoO0DJM+EH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a8006b657c92ea734245c5d16567daab_JaffaCakes118
- Size
  
  313KB
- MD5
  
  a8006b657c92ea734245c5d16567daab
- SHA1
  
  da88357cc2f22b9fc76a07d701e9f7c4ebda8402
- SHA256
  
  2e150d2a6a621c8420ea56a43664e43c8ad6a1ba90b65c2bb5de9aca851b7f64
- SHA512
  
  6056927124eb4a8bda92adae7085aa3850a5a83935d292f1e9fc738cc15e908c7c40f6b2c5855f756a53bcc5697154b75efa4e4bfb636741d9207120dfa2a5c6
- SSDEEP
  
  6144:orJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDM:orfu6/eIo4jVW5soVCcQovoO0DJM+EH
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2