23cfe0c033fdfd897130f7819eb05aee44e1361bd20b92227cfee633adaa1ce5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fa350e59207d6d7d49149c2839de810a_JaffaCakes118
Size

5.9MB
Sample

240927-l54cdszdpd
MD5

fa350e59207d6d7d49149c2839de810a
SHA1

d18e321c63187fec6bdfc2032c62ac056fa7c99a
SHA256

23cfe0c033fdfd897130f7819eb05aee44e1361bd20b92227cfee633adaa1ce5
SHA512

2b757f1f147229765296670ace0b38d6f990a14fe08e81044d0a3b02bda040f59f28b63e2cae49588dcf33e1e9c28da67f8736eed6c49b53c2ae83e227a78964
SSDEEP

98304:5278gv3jV1/OLZOfQamLpXhRcW3HdLLJ/8qv9wfBtdx4f/nA5dG3WZD7abjvHaE2:5PAjIhaADHdLzVw/duXqhaXHaElxK

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  fa350e59207d6d7d49149c2839de810a_JaffaCakes118
- Size
  
  5.9MB
- MD5
  
  fa350e59207d6d7d49149c2839de810a
- SHA1
  
  d18e321c63187fec6bdfc2032c62ac056fa7c99a
- SHA256
  
  23cfe0c033fdfd897130f7819eb05aee44e1361bd20b92227cfee633adaa1ce5
- SHA512
  
  2b757f1f147229765296670ace0b38d6f990a14fe08e81044d0a3b02bda040f59f28b63e2cae49588dcf33e1e9c28da67f8736eed6c49b53c2ae83e227a78964
- SSDEEP
  
  98304:5278gv3jV1/OLZOfQamLpXhRcW3HdLLJ/8qv9wfBtdx4f/nA5dG3WZD7abjvHaE2:5PAjIhaADHdLzVw/duXqhaXHaElxK
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2