dca8fa38d4db26fd2f63a5d0bc2bd4eeb211dbf96dbb91407d95d4decd5a8696 | Triage

Sharing

General

Target

aa6522150b5d2b5faf56d7a5b2af3e94_JaffaCakes118
Size

3.4MB
Sample

240819-k1psrsvfpf
MD5

aa6522150b5d2b5faf56d7a5b2af3e94
SHA1

f0c9c7f16c2b626e7bbb6d6a88ab4f61d05bde68
SHA256

dca8fa38d4db26fd2f63a5d0bc2bd4eeb211dbf96dbb91407d95d4decd5a8696
SHA512

2e04ffb214d795ed0b65710452e119ff3e612252cb8a906df3fafa3515c31f384b714936eb09ca09fd5ccbbab9accc4a3fbdbbe0aed9dfb49e621aca55e52fd5
SSDEEP

98304:YL+c6DkenGhCSpkw5p9/zP8yMSvGCz7TF5Ol:pfZ0t2Svz7Tyl

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  aa6522150b5d2b5faf56d7a5b2af3e94_JaffaCakes118
- Size
  
  3.4MB
- MD5
  
  aa6522150b5d2b5faf56d7a5b2af3e94
- SHA1
  
  f0c9c7f16c2b626e7bbb6d6a88ab4f61d05bde68
- SHA256
  
  dca8fa38d4db26fd2f63a5d0bc2bd4eeb211dbf96dbb91407d95d4decd5a8696
- SHA512
  
  2e04ffb214d795ed0b65710452e119ff3e612252cb8a906df3fafa3515c31f384b714936eb09ca09fd5ccbbab9accc4a3fbdbbe0aed9dfb49e621aca55e52fd5
- SSDEEP
  
  98304:YL+c6DkenGhCSpkw5p9/zP8yMSvGCz7TF5Ol:pfZ0t2Svz7Tyl
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2