c8314fe861a9939d09bebaf20f069ba64cd25a8a1809402ca36adf20d241f697 | Triage

Sharing

General

Target

36c24db1ed442d4b41c2b5e18e9d4639_JaffaCakes118
Size

660KB
Sample

240710-22e4dsxdpe
MD5

36c24db1ed442d4b41c2b5e18e9d4639
SHA1

5d50d595373988b0344c23aecbf85a8010f3e4d2
SHA256

c8314fe861a9939d09bebaf20f069ba64cd25a8a1809402ca36adf20d241f697
SHA512

884034489e000b37da43bae941774f4902bd619c51a10cebf4bab8e1eeada210afd4d733469f8953491f6a177d0e21ef9a670f5bc1e2285e5eea62740ab28e70
SSDEEP

12288:tn7YS4Qn0ViVi9KHUxzJWuR0zzqhvTfv7Vp1cyeLfJAmjmOvKYTg:tnMRsiQ0T9skr7z1VeLpmktU

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  36c24db1ed442d4b41c2b5e18e9d4639_JaffaCakes118
- Size
  
  660KB
- MD5
  
  36c24db1ed442d4b41c2b5e18e9d4639
- SHA1
  
  5d50d595373988b0344c23aecbf85a8010f3e4d2
- SHA256
  
  c8314fe861a9939d09bebaf20f069ba64cd25a8a1809402ca36adf20d241f697
- SHA512
  
  884034489e000b37da43bae941774f4902bd619c51a10cebf4bab8e1eeada210afd4d733469f8953491f6a177d0e21ef9a670f5bc1e2285e5eea62740ab28e70
- SSDEEP
  
  12288:tn7YS4Qn0ViVi9KHUxzJWuR0zzqhvTfv7Vp1cyeLfJAmjmOvKYTg:tnMRsiQ0T9skr7z1VeLpmktU
Score

7^/10

discovery
- Deletes itself
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2