1081087d65a2d31745fc263102db3c4e5ae199e33f2d7d5823740c99f606d6a1 | Triage

Sharing

General

Target

eabbc010240b7745dd56cc674cc9c94b_JaffaCakes118
Size

361KB
Sample

240919-gwwtqsvajg
MD5

eabbc010240b7745dd56cc674cc9c94b
SHA1

7fe0fb82f84d5e8094aee90a943ac37bd0d95172
SHA256

1081087d65a2d31745fc263102db3c4e5ae199e33f2d7d5823740c99f606d6a1
SHA512

2a322c3dbd2011c979aeb08aa31e50116bc4208a319bcac50543b552ab6d18bdc6ac87f532352487e82af914acbd18ac0cc1f08cf317435b25d1a2b9efcab011
SSDEEP

6144:e3I/t4j4VgCzNJGZCVAqtMXbq5a0YfuIBcGFEbNUk7veo5:CICj4KiVjtMr4YfWGiSwveo5

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  eabbc010240b7745dd56cc674cc9c94b_JaffaCakes118
- Size
  
  361KB
- MD5
  
  eabbc010240b7745dd56cc674cc9c94b
- SHA1
  
  7fe0fb82f84d5e8094aee90a943ac37bd0d95172
- SHA256
  
  1081087d65a2d31745fc263102db3c4e5ae199e33f2d7d5823740c99f606d6a1
- SHA512
  
  2a322c3dbd2011c979aeb08aa31e50116bc4208a319bcac50543b552ab6d18bdc6ac87f532352487e82af914acbd18ac0cc1f08cf317435b25d1a2b9efcab011
- SSDEEP
  
  6144:e3I/t4j4VgCzNJGZCVAqtMXbq5a0YfuIBcGFEbNUk7veo5:CICj4KiVjtMr4YfWGiSwveo5
Score

7^/10

discovery
- Executes dropped EXE
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2