5d0f5072c3288951a9f3740de4d2bfdfe3928c8a4e530e75725a0377fcf1a744 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bfa429c97a2cfd0a2495ff3555e6e83b_JaffaCakes118
Size

3.5MB
Sample

240824-3b9qraxbqq
MD5

bfa429c97a2cfd0a2495ff3555e6e83b
SHA1

3a1b0238562f1a951c922377c781d76106be8b85
SHA256

5d0f5072c3288951a9f3740de4d2bfdfe3928c8a4e530e75725a0377fcf1a744
SHA512

6501aab55963b825c41fc94ac23c02b3de1c098b69d5c579b761c7cec46c61448232f4eae7432271b1325c51b3157a788f812f24ebad4417326afc10b32a3084
SSDEEP

98304:1AeTbxGMCSPTtagdJg12PyVvc9beJurmN2:1X81SUeBQWeJurmN2

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  bfa429c97a2cfd0a2495ff3555e6e83b_JaffaCakes118
- Size
  
  3.5MB
- MD5
  
  bfa429c97a2cfd0a2495ff3555e6e83b
- SHA1
  
  3a1b0238562f1a951c922377c781d76106be8b85
- SHA256
  
  5d0f5072c3288951a9f3740de4d2bfdfe3928c8a4e530e75725a0377fcf1a744
- SHA512
  
  6501aab55963b825c41fc94ac23c02b3de1c098b69d5c579b761c7cec46c61448232f4eae7432271b1325c51b3157a788f812f24ebad4417326afc10b32a3084
- SSDEEP
  
  98304:1AeTbxGMCSPTtagdJg12PyVvc9beJurmN2:1X81SUeBQWeJurmN2
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2