42029d6d93e3501a7f21fa66a03c8bbbc7312961ed1d07882726e5d8978ea3e6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

22fff196938a30bb39ecc739eedc30d4_JaffaCakes118
Size

1.5MB
Sample

240703-tpt3saygqa
MD5

22fff196938a30bb39ecc739eedc30d4
SHA1

a00dc6d0822a231336b522527dda7236f566f7cf
SHA256

42029d6d93e3501a7f21fa66a03c8bbbc7312961ed1d07882726e5d8978ea3e6
SHA512

0ee52b6dc6107508dd650d5c2419ddbeb78b145d95948c9ee672dcd55bcb8e3f791c0203b2e751e544e9e19d0c9abdc7ced8980451dd6ac24077581fe5a48d65
SSDEEP

24576:315Y+wfqKrvJJ2JNoVZcQPB6agExaw+ayWeAC9IqLs/:Wq0Kv1Qp6q0J9rAf+2

Score

7^/10

Malware Config

Targets

- Target
  
  22fff196938a30bb39ecc739eedc30d4_JaffaCakes118
- Size
  
  1.5MB
- MD5
  
  22fff196938a30bb39ecc739eedc30d4
- SHA1
  
  a00dc6d0822a231336b522527dda7236f566f7cf
- SHA256
  
  42029d6d93e3501a7f21fa66a03c8bbbc7312961ed1d07882726e5d8978ea3e6
- SHA512
  
  0ee52b6dc6107508dd650d5c2419ddbeb78b145d95948c9ee672dcd55bcb8e3f791c0203b2e751e544e9e19d0c9abdc7ced8980451dd6ac24077581fe5a48d65
- SSDEEP
  
  24576:315Y+wfqKrvJJ2JNoVZcQPB6agExaw+ayWeAC9IqLs/:Wq0Kv1Qp6q0J9rAf+2
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2