13a3439acf0b924fb8f9242b9e69e240894e59f95f0bb06af89a733276e2791f | Triage

Sharing

General

Target

dffe7df20ec7df4e711e749361d24180_JaffaCakes118
Size

320KB
Sample

240914-mdtjjszbrb
MD5

dffe7df20ec7df4e711e749361d24180
SHA1

fc25a21199984d6ac9d8fbaac3b6ee1837b6fb55
SHA256

13a3439acf0b924fb8f9242b9e69e240894e59f95f0bb06af89a733276e2791f
SHA512

d4ce39963d4b595a781c9572216427b40a82a3c3875b34e9b0ee1f1350f5c0a2b986aab47c338132afef433d25b48e39dd418f7299b4c6c2c54a32407aab20e1
SSDEEP

6144:LbrdxW4s21mPExdY3yK+/hNoypyfG5A7sVLLe7:7y451mcY3yK6uyIOi7sVLLe7

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  dffe7df20ec7df4e711e749361d24180_JaffaCakes118
- Size
  
  320KB
- MD5
  
  dffe7df20ec7df4e711e749361d24180
- SHA1
  
  fc25a21199984d6ac9d8fbaac3b6ee1837b6fb55
- SHA256
  
  13a3439acf0b924fb8f9242b9e69e240894e59f95f0bb06af89a733276e2791f
- SHA512
  
  d4ce39963d4b595a781c9572216427b40a82a3c3875b34e9b0ee1f1350f5c0a2b986aab47c338132afef433d25b48e39dd418f7299b4c6c2c54a32407aab20e1
- SSDEEP
  
  6144:LbrdxW4s21mPExdY3yK+/hNoypyfG5A7sVLLe7:7y451mcY3yK6uyIOi7sVLLe7
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2