69e885cae86457c4a4b21095555cd0906ff22dfc34b65b0b45b633aaae30dda7 | Triage

Sharing

General

Target

0e35d1aa1cd581494bccb286d0c9adff_JaffaCakes118
Size

920KB
Sample

240625-qg66lasamf
MD5

0e35d1aa1cd581494bccb286d0c9adff
SHA1

1099d1119361c2a5f4867bcf16e2a25d4874db7b
SHA256

69e885cae86457c4a4b21095555cd0906ff22dfc34b65b0b45b633aaae30dda7
SHA512

00b0fddcb97dfead478d227f6d00334ce308ab6ad40ef1e5b90db8cebe121f059e2bfc649e819339e5b66b3effe458aef610df784d5f665fad6b912395ce93db
SSDEEP

24576:KeFDHYvmR38IJS7kF6lDJqLGT4RSskUMFiHYrWMj3:7FbR547kQlDJqDzHsl

Score

8^/10

Malware Config

Targets

- Target
  
  0e35d1aa1cd581494bccb286d0c9adff_JaffaCakes118
- Size
  
  920KB
- MD5
  
  0e35d1aa1cd581494bccb286d0c9adff
- SHA1
  
  1099d1119361c2a5f4867bcf16e2a25d4874db7b
- SHA256
  
  69e885cae86457c4a4b21095555cd0906ff22dfc34b65b0b45b633aaae30dda7
- SHA512
  
  00b0fddcb97dfead478d227f6d00334ce308ab6ad40ef1e5b90db8cebe121f059e2bfc649e819339e5b66b3effe458aef610df784d5f665fad6b912395ce93db
- SSDEEP
  
  24576:KeFDHYvmR38IJS7kF6lDJqLGT4RSskUMFiHYrWMj3:7FbR547kQlDJqDzHsl
Score

8^/10
- Drops file in Drivers directory
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2