a474cba06862933578a2842c14cf6d8be028c170cab9bf3c1e29b7864c08f734 | Triage

Sharing

General

Target

ae6374531ed10600eea4d7ac88b02afc_JaffaCakes118
Size

2.0MB
Sample

240615-pgg12atglr
MD5

ae6374531ed10600eea4d7ac88b02afc
SHA1

da868a6ff6f6776acb936c186c7fe8471bbca38b
SHA256

a474cba06862933578a2842c14cf6d8be028c170cab9bf3c1e29b7864c08f734
SHA512

f42204a6d0e7dfcb02d9cc5d7772ac8c752d998ab62d09c5417bd577dd185787d616020a6bb895428a12bd1dc4a82e251487b1cbc83a4eaed93388d265e93ff7
SSDEEP

6144:l2rnd2jYsTTXW1BcZ15koJ87B/WqFiCLHS46ejlJdNfj1B/C4T8I+wlEgn4yKB8M:orFpykoJ89WqrTZ3BZv5n47B8M

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ae6374531ed10600eea4d7ac88b02afc_JaffaCakes118
- Size
  
  2.0MB
- MD5
  
  ae6374531ed10600eea4d7ac88b02afc
- SHA1
  
  da868a6ff6f6776acb936c186c7fe8471bbca38b
- SHA256
  
  a474cba06862933578a2842c14cf6d8be028c170cab9bf3c1e29b7864c08f734
- SHA512
  
  f42204a6d0e7dfcb02d9cc5d7772ac8c752d998ab62d09c5417bd577dd185787d616020a6bb895428a12bd1dc4a82e251487b1cbc83a4eaed93388d265e93ff7
- SSDEEP
  
  6144:l2rnd2jYsTTXW1BcZ15koJ87B/WqFiCLHS46ejlJdNfj1B/C4T8I+wlEgn4yKB8M:orFpykoJ89WqrTZ3BZv5n47B8M
Score

7^/10

discovery
- Drops startup file
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2