23269676ab8c0123e334ef1b1839d7949abeb4cf40096d986a19a2883f7b415d | Triage

Sharing

General

Target

b3240cd2a6cfd22b574736e706c2e73d_JaffaCakes118
Size

580KB
Sample

240616-mz94es1ala
MD5

b3240cd2a6cfd22b574736e706c2e73d
SHA1

f2898592ed02aeda54c749ed819917060af93cd8
SHA256

23269676ab8c0123e334ef1b1839d7949abeb4cf40096d986a19a2883f7b415d
SHA512

838d6f2e3403a5e6db3303501599984a2b49c59345067f08134ce492ad3b6dec3a2d46666ae7585d3718d53d948ed3f7116e4f98de33fa360a4219582ad8bce8
SSDEEP

12288:hPkZnNZwi3ZlYq/jVIO00rY/qMdb4GtcZy7HyLXz3v/Os3eSPclCR06:BKN+qlYKjVz00rYiMd8z3vmsuSPc0R06

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b3240cd2a6cfd22b574736e706c2e73d_JaffaCakes118
- Size
  
  580KB
- MD5
  
  b3240cd2a6cfd22b574736e706c2e73d
- SHA1
  
  f2898592ed02aeda54c749ed819917060af93cd8
- SHA256
  
  23269676ab8c0123e334ef1b1839d7949abeb4cf40096d986a19a2883f7b415d
- SHA512
  
  838d6f2e3403a5e6db3303501599984a2b49c59345067f08134ce492ad3b6dec3a2d46666ae7585d3718d53d948ed3f7116e4f98de33fa360a4219582ad8bce8
- SSDEEP
  
  12288:hPkZnNZwi3ZlYq/jVIO00rY/qMdb4GtcZy7HyLXz3v/Os3eSPclCR06:BKN+qlYKjVz00rYiMd8z3vmsuSPc0R06
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2