3d4a1b5f9c4cce2b36e741f56cf0371e853c35f01bcc8c36d3478432327624fd | Triage

Sharing

General

Target

d1854b4d1d364219c1a0f4e1427087f0_JaffaCakes118
Size

4.2MB
Sample

240907-kjqczavfqe
MD5

d1854b4d1d364219c1a0f4e1427087f0
SHA1

3db1b16d8de15766b57721cebb3809b58cc54ffd
SHA256

3d4a1b5f9c4cce2b36e741f56cf0371e853c35f01bcc8c36d3478432327624fd
SHA512

0c0c9e254544c15ae49c03d75f206bcbd41e9d665d48d6b5f647f6a7a791c591d3b7cf10754830b5998424807d12c2f6a833cf84f4d7c3b94dd8553a293bc177
SSDEEP

98304:mnON9fJh5b1CBCJddJg1f0rmNpLdspMD5RVxIZsst:1DfJh5WUA0rmNpLdspMD5RHYNt

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  d1854b4d1d364219c1a0f4e1427087f0_JaffaCakes118
- Size
  
  4.2MB
- MD5
  
  d1854b4d1d364219c1a0f4e1427087f0
- SHA1
  
  3db1b16d8de15766b57721cebb3809b58cc54ffd
- SHA256
  
  3d4a1b5f9c4cce2b36e741f56cf0371e853c35f01bcc8c36d3478432327624fd
- SHA512
  
  0c0c9e254544c15ae49c03d75f206bcbd41e9d665d48d6b5f647f6a7a791c591d3b7cf10754830b5998424807d12c2f6a833cf84f4d7c3b94dd8553a293bc177
- SSDEEP
  
  98304:mnON9fJh5b1CBCJddJg1f0rmNpLdspMD5RVxIZsst:1DfJh5WUA0rmNpLdspMD5RHYNt
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2