832817084879205dc3bc8c2a0ab89bd7e79ce16aa75fb4c008972308e651fd23 | Triage

Sharing

General

Target

700db04d9458dc3f5318923fa0bf34f9_JaffaCakes118
Size

698KB
Sample

240725-r9x9tsvcnm
MD5

700db04d9458dc3f5318923fa0bf34f9
SHA1

e39f4a23d4c7e97d3586e34e14957ba4c5f0e279
SHA256

832817084879205dc3bc8c2a0ab89bd7e79ce16aa75fb4c008972308e651fd23
SHA512

f49d42f898bc4e83bd8bae05a288dafdd27d1269c8f6dbe8d55dfc89c34099502812a9115d9dea6f245d2d9fd9e877c36dc0cac9ea5580f9819219af22e2c677
SSDEEP

12288:HPmtR93Ks3lBvdk4MSKWuFtWHGRDZ8WepHY0aeX2f378Bl+JYhliw7Cb:HwFlBvdk4M5WuFsmRVJeK0aeX2fYIJYE

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  700db04d9458dc3f5318923fa0bf34f9_JaffaCakes118
- Size
  
  698KB
- MD5
  
  700db04d9458dc3f5318923fa0bf34f9
- SHA1
  
  e39f4a23d4c7e97d3586e34e14957ba4c5f0e279
- SHA256
  
  832817084879205dc3bc8c2a0ab89bd7e79ce16aa75fb4c008972308e651fd23
- SHA512
  
  f49d42f898bc4e83bd8bae05a288dafdd27d1269c8f6dbe8d55dfc89c34099502812a9115d9dea6f245d2d9fd9e877c36dc0cac9ea5580f9819219af22e2c677
- SSDEEP
  
  12288:HPmtR93Ks3lBvdk4MSKWuFtWHGRDZ8WepHY0aeX2f378Bl+JYhliw7Cb:HwFlBvdk4M5WuFsmRVJeK0aeX2fYIJYE
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2