2855431166841a7715a61a68a4ee7e2986770a2b6de0ce4f6c864f9c6651f830 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3973617194ce36b05585f105fd4f7c74_JaffaCakes118
Size

752KB
Sample

240711-rgc37asbjd
MD5

3973617194ce36b05585f105fd4f7c74
SHA1

a52537ef4258326db51ddbb96f0cf4212db27303
SHA256

2855431166841a7715a61a68a4ee7e2986770a2b6de0ce4f6c864f9c6651f830
SHA512

fa0347bf077e6a6a2011bbbe75d9e30ce5f3a11a424ba6a3e606056c3ab96841e6ddfd67fa92fbb6bae8050239bd0d7a9e780db69d09fdc0ca8bce5ba2adc8ff
SSDEEP

12288:bbIzla91hkXBZuufT6vNNTLhoNgGwkuFUQcqJsk8ws7n3o9PKsXT9I+8M9n:3KsPkXy5VNLYgdkx9qKk1wnY9ySVpB

Score

7^/10

Malware Config

Targets

- Target
  
  3973617194ce36b05585f105fd4f7c74_JaffaCakes118
- Size
  
  752KB
- MD5
  
  3973617194ce36b05585f105fd4f7c74
- SHA1
  
  a52537ef4258326db51ddbb96f0cf4212db27303
- SHA256
  
  2855431166841a7715a61a68a4ee7e2986770a2b6de0ce4f6c864f9c6651f830
- SHA512
  
  fa0347bf077e6a6a2011bbbe75d9e30ce5f3a11a424ba6a3e606056c3ab96841e6ddfd67fa92fbb6bae8050239bd0d7a9e780db69d09fdc0ca8bce5ba2adc8ff
- SSDEEP
  
  12288:bbIzla91hkXBZuufT6vNNTLhoNgGwkuFUQcqJsk8ws7n3o9PKsXT9I+8M9n:3KsPkXy5VNLYgdkx9qKk1wnY9ySVpB
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2