9b58c132a8ba2fa4f6a5d6f3dfcda8ce0489594b6893382b2d17d03b841610bc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b30de2aba9310c516aa61d89c83450c2_JaffaCakes118
Size

313KB
Sample

240616-ml65lsterk
MD5

b30de2aba9310c516aa61d89c83450c2
SHA1

b2b59d0384064276a250af730d583ab7875b8e32
SHA256

9b58c132a8ba2fa4f6a5d6f3dfcda8ce0489594b6893382b2d17d03b841610bc
SHA512

c2b76ada17df1ccaa2ff91e14d5e2104afb6352756dde075ee259eea43d53c1d8b518923b510db26df1c8d3c1e91a910afc6b89c4e3fb1e23d550ce27c279b51
SSDEEP

6144:5rb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMg:5rRu6/eIo4t3PuFITKUAT

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b30de2aba9310c516aa61d89c83450c2_JaffaCakes118
- Size
  
  313KB
- MD5
  
  b30de2aba9310c516aa61d89c83450c2
- SHA1
  
  b2b59d0384064276a250af730d583ab7875b8e32
- SHA256
  
  9b58c132a8ba2fa4f6a5d6f3dfcda8ce0489594b6893382b2d17d03b841610bc
- SHA512
  
  c2b76ada17df1ccaa2ff91e14d5e2104afb6352756dde075ee259eea43d53c1d8b518923b510db26df1c8d3c1e91a910afc6b89c4e3fb1e23d550ce27c279b51
- SSDEEP
  
  6144:5rb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMg:5rRu6/eIo4t3PuFITKUAT
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2