df5df98c65a92330713c13fc221be585437f4624682194b70229694b90eab1d2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6fe50a80c5e616f52b17f11e24a50590_JaffaCakes118
Size

223KB
Sample

240725-re5enaseqm
MD5

6fe50a80c5e616f52b17f11e24a50590
SHA1

325ff670d079f8fac8de0c59334c96ffd823975f
SHA256

df5df98c65a92330713c13fc221be585437f4624682194b70229694b90eab1d2
SHA512

3db0542a32df6183e23616f44805f8dee341d2970adebc8f57a47171322f5a25ffb99b2fb6580bfac4de96790c807f84abd3a16497179385bc7ae142ba0b02b7
SSDEEP

6144:OnedrqSJnIjyfENiv2bpA+9N84gnSBb4qC96:Oned3nIucov2beW7gnK4996

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6fe50a80c5e616f52b17f11e24a50590_JaffaCakes118
- Size
  
  223KB
- MD5
  
  6fe50a80c5e616f52b17f11e24a50590
- SHA1
  
  325ff670d079f8fac8de0c59334c96ffd823975f
- SHA256
  
  df5df98c65a92330713c13fc221be585437f4624682194b70229694b90eab1d2
- SHA512
  
  3db0542a32df6183e23616f44805f8dee341d2970adebc8f57a47171322f5a25ffb99b2fb6580bfac4de96790c807f84abd3a16497179385bc7ae142ba0b02b7
- SSDEEP
  
  6144:OnedrqSJnIjyfENiv2bpA+9N84gnSBb4qC96:Oned3nIucov2beW7gnK4996
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2