261b772825bd08ea716cd49cf340a7c20d27956846951d0b098c19d9322e77ba | Triage

Sharing

General

Target

dfccf63606759e9f718cc5eed96fa477_JaffaCakes118
Size

258KB
Sample

240914-j4tepathkp
MD5

dfccf63606759e9f718cc5eed96fa477
SHA1

863fe49c4ce65acfd9f0199f4271bf3abd6b0b59
SHA256

261b772825bd08ea716cd49cf340a7c20d27956846951d0b098c19d9322e77ba
SHA512

6db35359884caf1a2b7db5960716443cdfe5d070a1ac8cb858efacdaf4fc4f260595766f614f8d010628be73ee0fe6eff0d4aacd9ee638fb41303642c3f6fb1f
SSDEEP

6144:7wyXAg0HSQfKgNn4v5VbE0JQCnwrlxiKT:Ag0HdNn4vDnwrfiKT

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  dfccf63606759e9f718cc5eed96fa477_JaffaCakes118
- Size
  
  258KB
- MD5
  
  dfccf63606759e9f718cc5eed96fa477
- SHA1
  
  863fe49c4ce65acfd9f0199f4271bf3abd6b0b59
- SHA256
  
  261b772825bd08ea716cd49cf340a7c20d27956846951d0b098c19d9322e77ba
- SHA512
  
  6db35359884caf1a2b7db5960716443cdfe5d070a1ac8cb858efacdaf4fc4f260595766f614f8d010628be73ee0fe6eff0d4aacd9ee638fb41303642c3f6fb1f
- SSDEEP
  
  6144:7wyXAg0HSQfKgNn4v5VbE0JQCnwrlxiKT:Ag0HdNn4vDnwrfiKT
Score

7^/10

discovery
- Executes dropped EXE
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2