876692b42cbb36b5bbe9e6bf3563db1838a2395f451a0188133eb041bd1968b5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b055493e992a496b2978f74331292b4c_JaffaCakes118
Size

507KB
Sample

240820-w1kplawhkh
MD5

b055493e992a496b2978f74331292b4c
SHA1

aefe201550e72e8abae061fbbca6521d1079330a
SHA256

876692b42cbb36b5bbe9e6bf3563db1838a2395f451a0188133eb041bd1968b5
SHA512

e62e80094483f7da6c8e53038df509da2d0066791a1124eb09dc70407bfb16f8aae02e16c11a73fb28cc7a3ff537b4a0690c1b5ed36af378730b7e5b437b4d28
SSDEEP

12288:knmtydxbYqqJ/3DBXcxQ8EvbGTP4Z39CtREX8MYevzy:knmEdxIt3Du+TZCA8MYK

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b055493e992a496b2978f74331292b4c_JaffaCakes118
- Size
  
  507KB
- MD5
  
  b055493e992a496b2978f74331292b4c
- SHA1
  
  aefe201550e72e8abae061fbbca6521d1079330a
- SHA256
  
  876692b42cbb36b5bbe9e6bf3563db1838a2395f451a0188133eb041bd1968b5
- SHA512
  
  e62e80094483f7da6c8e53038df509da2d0066791a1124eb09dc70407bfb16f8aae02e16c11a73fb28cc7a3ff537b4a0690c1b5ed36af378730b7e5b437b4d28
- SSDEEP
  
  12288:knmtydxbYqqJ/3DBXcxQ8EvbGTP4Z39CtREX8MYevzy:knmEdxIt3Du+TZCA8MYK
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2