caf1d1370d936316fb8b58bf5cdc8c9f8553f4c432ef4da6f14ae9bfc9dd2bcc | Triage

Sharing

General

Target

49e2c69e25ffe3957c47412628954c5e_JaffaCakes118
Size

131KB
Sample

240715-p8vffavfjd
MD5

49e2c69e25ffe3957c47412628954c5e
SHA1

7da3fc4e046837423594805b3174e6238ea87e0a
SHA256

caf1d1370d936316fb8b58bf5cdc8c9f8553f4c432ef4da6f14ae9bfc9dd2bcc
SHA512

47ffee6cffe8d7db363c0ea149ff40626638c8987d73cc425dbf4b05032b8a7973af831880e60289064500503f0b38edd5574dc7cb3f7a02a44fba92bec3b7a3
SSDEEP

3072:wjoornnDPDBkII5MwA76cu6ecTzFdex8iWpBh5f:vuPeII5MecuuTzqx85pBz

Score

7^/10

Malware Config

Targets

- Target
  
  49e2c69e25ffe3957c47412628954c5e_JaffaCakes118
- Size
  
  131KB
- MD5
  
  49e2c69e25ffe3957c47412628954c5e
- SHA1
  
  7da3fc4e046837423594805b3174e6238ea87e0a
- SHA256
  
  caf1d1370d936316fb8b58bf5cdc8c9f8553f4c432ef4da6f14ae9bfc9dd2bcc
- SHA512
  
  47ffee6cffe8d7db363c0ea149ff40626638c8987d73cc425dbf4b05032b8a7973af831880e60289064500503f0b38edd5574dc7cb3f7a02a44fba92bec3b7a3
- SSDEEP
  
  3072:wjoornnDPDBkII5MwA76cu6ecTzFdex8iWpBh5f:vuPeII5MecuuTzqx85pBz
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2