860c9426ec428f9e1b4b0c5f4ecafbcd777c54b57712a2a11c306054623f3684 | Triage

Sharing

General

Target

168e1872ebb849d6523ca24c3a48019a_JaffaCakes118
Size

495KB
Sample

240627-s3pjsaxhqe
MD5

168e1872ebb849d6523ca24c3a48019a
SHA1

4083773dd337dde4fe95596e30c401bb5c4ccf31
SHA256

860c9426ec428f9e1b4b0c5f4ecafbcd777c54b57712a2a11c306054623f3684
SHA512

3a7425d550b7d83613e0dc17f5264eb993b7232b66effd8d508d1131369089fcf0c76b858277e203a42bcbe4b255a9494f8722420379552a1747d29ab8c7c7c9
SSDEEP

6144:irPFRI6zSZ8DTtx1HhDF2idZecnl20lHRxp3gTncduD7yB9VCO6Sco4q8+dE6Cqx:iTFRnzSexThF3Z4mxxgDqVTVOC

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  168e1872ebb849d6523ca24c3a48019a_JaffaCakes118
- Size
  
  495KB
- MD5
  
  168e1872ebb849d6523ca24c3a48019a
- SHA1
  
  4083773dd337dde4fe95596e30c401bb5c4ccf31
- SHA256
  
  860c9426ec428f9e1b4b0c5f4ecafbcd777c54b57712a2a11c306054623f3684
- SHA512
  
  3a7425d550b7d83613e0dc17f5264eb993b7232b66effd8d508d1131369089fcf0c76b858277e203a42bcbe4b255a9494f8722420379552a1747d29ab8c7c7c9
- SSDEEP
  
  6144:irPFRI6zSZ8DTtx1HhDF2idZecnl20lHRxp3gTncduD7yB9VCO6Sco4q8+dE6Cqx:iTFRnzSexThF3Z4mxxgDqVTVOC
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2