e9e4fa0bf65a6e66670816654dafb30cb3c03a6c1833535c35faf474d094ac81 | Triage

Sharing

General

Target

b631b3cc8cd98ec0146daf542048131b_JaffaCakes118
Size

258KB
Sample

240617-bymqysyapg
MD5

b631b3cc8cd98ec0146daf542048131b
SHA1

8c20ba310274800cca898f8c2dba04a758f0506d
SHA256

e9e4fa0bf65a6e66670816654dafb30cb3c03a6c1833535c35faf474d094ac81
SHA512

fd6d85d14e78157821d833d50bbb4a0f2d0346523163c6925939be808c647299e6838d24825cb3690c2ae29d614f06e932e2513fd255aabb57cba1a1e8eddff3
SSDEEP

6144:OfZgjgMyriRwJd4RjpKWPGLoFggw8RrqXw:OfagMy14RjpK6GL98RrqXw

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  b631b3cc8cd98ec0146daf542048131b_JaffaCakes118
- Size
  
  258KB
- MD5
  
  b631b3cc8cd98ec0146daf542048131b
- SHA1
  
  8c20ba310274800cca898f8c2dba04a758f0506d
- SHA256
  
  e9e4fa0bf65a6e66670816654dafb30cb3c03a6c1833535c35faf474d094ac81
- SHA512
  
  fd6d85d14e78157821d833d50bbb4a0f2d0346523163c6925939be808c647299e6838d24825cb3690c2ae29d614f06e932e2513fd255aabb57cba1a1e8eddff3
- SSDEEP
  
  6144:OfZgjgMyriRwJd4RjpKWPGLoFggw8RrqXw:OfagMy14RjpK6GL98RrqXw
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2