3f5cb8d761b60f3d3c9086c638053395cc9340a7882c8552c3d9836a59d73e3f | Triage

Sharing

General

Target

b831ab994c173e02bd6e17c53efcc845_JaffaCakes118
Size

756KB
Sample

240822-s2944axdlj
MD5

b831ab994c173e02bd6e17c53efcc845
SHA1

dfb5fff0ceb9484e6d502354fc28bfecd97d72fc
SHA256

3f5cb8d761b60f3d3c9086c638053395cc9340a7882c8552c3d9836a59d73e3f
SHA512

aa79c2c20b72d9efb229658e8521d93e40454eeee0793d5965db1edb6b15c4a658b5e3e5a18243da299141afa35cb6677a2a178387280e36f1067ca4fe773dfc
SSDEEP

12288:kxpz4TolPke11PbUcqcyylNoJSKT4Cw5ZqDrqKgA96MmAgjhAZ56fOBFeeA604tP:kxF40pkW1j5LyylNoJSpCi4p96Mu2Z6a

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b831ab994c173e02bd6e17c53efcc845_JaffaCakes118
- Size
  
  756KB
- MD5
  
  b831ab994c173e02bd6e17c53efcc845
- SHA1
  
  dfb5fff0ceb9484e6d502354fc28bfecd97d72fc
- SHA256
  
  3f5cb8d761b60f3d3c9086c638053395cc9340a7882c8552c3d9836a59d73e3f
- SHA512
  
  aa79c2c20b72d9efb229658e8521d93e40454eeee0793d5965db1edb6b15c4a658b5e3e5a18243da299141afa35cb6677a2a178387280e36f1067ca4fe773dfc
- SSDEEP
  
  12288:kxpz4TolPke11PbUcqcyylNoJSKT4Cw5ZqDrqKgA96MmAgjhAZ56fOBFeeA604tP:kxF40pkW1j5LyylNoJSpCi4p96Mu2Z6a
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2