6d3dd1d7334aee5c5e39144b6fbe25fc2abdc80350c64ae1eed7572128a66a15 | Triage

Sharing

General

Target

a22add31de955830ecb5bf93cf43d3a8_JaffaCakes118
Size

137KB
Sample

240817-met7ga1akc
MD5

a22add31de955830ecb5bf93cf43d3a8
SHA1

f9628f7845733f8b128902f4f876ef59e663811e
SHA256

6d3dd1d7334aee5c5e39144b6fbe25fc2abdc80350c64ae1eed7572128a66a15
SHA512

ccb189c6b5cfcd95d50c2b4c5c1012730529d882c6456e688e5be1788b827ce27e5006e5d7c447dbd307d16b366ef050d37ee942743fca3decef1473733139f8
SSDEEP

3072:c77l8ANweLqxFJWGWCI/fVvFWsN/kRdqNkxn:QT1eJWKI6RUNkx

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a22add31de955830ecb5bf93cf43d3a8_JaffaCakes118
- Size
  
  137KB
- MD5
  
  a22add31de955830ecb5bf93cf43d3a8
- SHA1
  
  f9628f7845733f8b128902f4f876ef59e663811e
- SHA256
  
  6d3dd1d7334aee5c5e39144b6fbe25fc2abdc80350c64ae1eed7572128a66a15
- SHA512
  
  ccb189c6b5cfcd95d50c2b4c5c1012730529d882c6456e688e5be1788b827ce27e5006e5d7c447dbd307d16b366ef050d37ee942743fca3decef1473733139f8
- SSDEEP
  
  3072:c77l8ANweLqxFJWGWCI/fVvFWsN/kRdqNkxn:QT1eJWKI6RUNkx
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2