6b0d38838ef0dd360657fe4c4a40d418d501885a05b11991a6987e71ea9dd185 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f5c1eda3ce32d1603c7a863d391d4576_JaffaCakes118
Size

352KB
Sample

240925-l2akxasdkb
MD5

f5c1eda3ce32d1603c7a863d391d4576
SHA1

5aab7cb1a683e3e50848b050f6a75aad4e82762f
SHA256

6b0d38838ef0dd360657fe4c4a40d418d501885a05b11991a6987e71ea9dd185
SHA512

3a10413ffd1dfa5efcf0ea722cd187893e30fc3862834691ca4abc692b9f50aa7ecf9e12715c4a0d8e4894c14f1db76eaacc92eac88cee598df2843c5e99ad78
SSDEEP

6144:a82v3tBI+RAG8M339QdjiJQCx9w1lK3698QwHW5ap1Gnm:az/tBv0M3eRA99w1wKCOa7Gnm

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f5c1eda3ce32d1603c7a863d391d4576_JaffaCakes118
- Size
  
  352KB
- MD5
  
  f5c1eda3ce32d1603c7a863d391d4576
- SHA1
  
  5aab7cb1a683e3e50848b050f6a75aad4e82762f
- SHA256
  
  6b0d38838ef0dd360657fe4c4a40d418d501885a05b11991a6987e71ea9dd185
- SHA512
  
  3a10413ffd1dfa5efcf0ea722cd187893e30fc3862834691ca4abc692b9f50aa7ecf9e12715c4a0d8e4894c14f1db76eaacc92eac88cee598df2843c5e99ad78
- SSDEEP
  
  6144:a82v3tBI+RAG8M339QdjiJQCx9w1lK3698QwHW5ap1Gnm:az/tBv0M3eRA99w1wKCOa7Gnm
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2