d2fe8be9f67f3de9639109268058d237a49d23c5441d94b38a2125c6b740f295 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b4a575167c93050a1648075c6734b1d1_JaffaCakes118
Size

313KB
Sample

240616-xeg71swgjj
MD5

b4a575167c93050a1648075c6734b1d1
SHA1

576e41a52c813ad57759ef5ca9dd80a6f606592f
SHA256

d2fe8be9f67f3de9639109268058d237a49d23c5441d94b38a2125c6b740f295
SHA512

a0c4bc8c0e5b87faa9fccf059eda05e33c3f49763b3b172ef7d8b76d520af7cc0916352faf0ff1617b03857973717e541f99b09a99d127dbe924c415b5ebbb30
SSDEEP

6144:nro9uEo2S1YnQmCX492DkwNP3qpYFx1PKR9bwMHCrwqdS1D/9n1v94d0:nrAu6/eIo4s1yR9lsc/ad0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b4a575167c93050a1648075c6734b1d1_JaffaCakes118
- Size
  
  313KB
- MD5
  
  b4a575167c93050a1648075c6734b1d1
- SHA1
  
  576e41a52c813ad57759ef5ca9dd80a6f606592f
- SHA256
  
  d2fe8be9f67f3de9639109268058d237a49d23c5441d94b38a2125c6b740f295
- SHA512
  
  a0c4bc8c0e5b87faa9fccf059eda05e33c3f49763b3b172ef7d8b76d520af7cc0916352faf0ff1617b03857973717e541f99b09a99d127dbe924c415b5ebbb30
- SSDEEP
  
  6144:nro9uEo2S1YnQmCX492DkwNP3qpYFx1PKR9bwMHCrwqdS1D/9n1v94d0:nrAu6/eIo4s1yR9lsc/ad0
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2