164bccd8ac34749b2a5144daf6f28541e21c0b5729e49fe4eb5cd259d6119f4d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

85ba1c81d419d0743870fa21c84114ee_JaffaCakes118
Size

200KB
Sample

240810-mkrnjazcme
MD5

85ba1c81d419d0743870fa21c84114ee
SHA1

61904f45397d94457b04baf540bacb9128ee4475
SHA256

164bccd8ac34749b2a5144daf6f28541e21c0b5729e49fe4eb5cd259d6119f4d
SHA512

214a08f9dcf81a9066c20c9dc1d28a84c76bb2b045e1d3eb28b06d2893c574cc5af0198617009c5bef803d352b5f6679a8447949468976b807c6402820453f98
SSDEEP

3072:bHHyIXRTzLgDsdCtykxdaA3dYCvhOtJYVQcA5fM0LVOl5xKYWgwQxrlUPC2HoC:bhNpg1dagdYhmLpqOl5x+5QT49oC

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  85ba1c81d419d0743870fa21c84114ee_JaffaCakes118
- Size
  
  200KB
- MD5
  
  85ba1c81d419d0743870fa21c84114ee
- SHA1
  
  61904f45397d94457b04baf540bacb9128ee4475
- SHA256
  
  164bccd8ac34749b2a5144daf6f28541e21c0b5729e49fe4eb5cd259d6119f4d
- SHA512
  
  214a08f9dcf81a9066c20c9dc1d28a84c76bb2b045e1d3eb28b06d2893c574cc5af0198617009c5bef803d352b5f6679a8447949468976b807c6402820453f98
- SSDEEP
  
  3072:bHHyIXRTzLgDsdCtykxdaA3dYCvhOtJYVQcA5fM0LVOl5xKYWgwQxrlUPC2HoC:bhNpg1dagdYhmLpqOl5x+5QT49oC
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2