533661a40b439f89e02d32bc7b50cce5dc5e1feb385b32e92c3a2a0ff23dae27 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

943667bdb91548397b1cef7f44ac2a46_JaffaCakes118
Size

718KB
Sample

240813-wxvqdsyfpg
MD5

943667bdb91548397b1cef7f44ac2a46
SHA1

9639ddcd024a1525a8d27fb7199e96a3f08bfcdb
SHA256

533661a40b439f89e02d32bc7b50cce5dc5e1feb385b32e92c3a2a0ff23dae27
SHA512

ee2b1f439fa17ed3e11497ebf11f789dd6465d93c854c78c1a0f18eca8d6b7f857a3f951d2904e93ff683d300a5b97ffa711e3e1f4e4bc170e90766075dfa291
SSDEEP

6144:NM/in98C/WvBJIzvGO8QC2VL8nVG2CPRgLXM+1mq7kycl8dk3LNr6XoRDae8N5Yv:0C98CQnmGl2y+gL8+13gyc6EZou+AHJ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  943667bdb91548397b1cef7f44ac2a46_JaffaCakes118
- Size
  
  718KB
- MD5
  
  943667bdb91548397b1cef7f44ac2a46
- SHA1
  
  9639ddcd024a1525a8d27fb7199e96a3f08bfcdb
- SHA256
  
  533661a40b439f89e02d32bc7b50cce5dc5e1feb385b32e92c3a2a0ff23dae27
- SHA512
  
  ee2b1f439fa17ed3e11497ebf11f789dd6465d93c854c78c1a0f18eca8d6b7f857a3f951d2904e93ff683d300a5b97ffa711e3e1f4e4bc170e90766075dfa291
- SSDEEP
  
  6144:NM/in98C/WvBJIzvGO8QC2VL8nVG2CPRgLXM+1mq7kycl8dk3LNr6XoRDae8N5Yv:0C98CQnmGl2y+gL8+13gyc6EZou+AHJ
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Program crash
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2