15fa9b0577c75b77f539080f0f3f10a84c8d534a531a8642e6bd123d6a968e20 | Triage

Sharing

General

Target

da6fff7952400f898a43d0e0555c67a2_JaffaCakes118
Size

221KB
Sample

240911-qnt5lsshpa
MD5

da6fff7952400f898a43d0e0555c67a2
SHA1

e020495a9162c5865d38abfdaf9101937370034f
SHA256

15fa9b0577c75b77f539080f0f3f10a84c8d534a531a8642e6bd123d6a968e20
SHA512

fee4bb970d82592455c0930563fede79a067fb40992d6515cbf006f42111bf8317ab56524d185d3ce909faebce5267da920edfc271a6258fd9b4def6a53141d5
SSDEEP

3072:pzq11bBJCvlWev3ggcPDEveo3idzTeYJPMwm62J/NvWJ/SOCCaOrbKwm:ubBQbw4PyPV/2JFvWJ/SrOrbKn

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  da6fff7952400f898a43d0e0555c67a2_JaffaCakes118
- Size
  
  221KB
- MD5
  
  da6fff7952400f898a43d0e0555c67a2
- SHA1
  
  e020495a9162c5865d38abfdaf9101937370034f
- SHA256
  
  15fa9b0577c75b77f539080f0f3f10a84c8d534a531a8642e6bd123d6a968e20
- SHA512
  
  fee4bb970d82592455c0930563fede79a067fb40992d6515cbf006f42111bf8317ab56524d185d3ce909faebce5267da920edfc271a6258fd9b4def6a53141d5
- SSDEEP
  
  3072:pzq11bBJCvlWev3ggcPDEveo3idzTeYJPMwm62J/NvWJ/SOCCaOrbKwm:ubBQbw4PyPV/2JFvWJ/SrOrbKn
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2