3995c352977ca5c91d90b0b8414f192336fa9713ac9a5ee6d17e63ef3666377d | Triage

Sharing

General

Target

fae911aae2e036c56ea5860cd5779183_JaffaCakes118
Size

315KB
Sample

240927-zyq1dazckl
MD5

fae911aae2e036c56ea5860cd5779183
SHA1

d03dfc1ede915ac4f09d7a693609afb130ebdee4
SHA256

3995c352977ca5c91d90b0b8414f192336fa9713ac9a5ee6d17e63ef3666377d
SHA512

a17f71643cdc657a467df9c5f72721f4e68ffd6077fa54382f71b62fb76e00a6aadb423d61ad14103cd279b4370c5fda2075396fff4975d99377efcabb37a973
SSDEEP

6144:FrvbUzkuvcBYC47l2x0vOppHKip3Hrcgrz/xHWS1JE:FrkkuveY3oXpHggf4S1m

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  fae911aae2e036c56ea5860cd5779183_JaffaCakes118
- Size
  
  315KB
- MD5
  
  fae911aae2e036c56ea5860cd5779183
- SHA1
  
  d03dfc1ede915ac4f09d7a693609afb130ebdee4
- SHA256
  
  3995c352977ca5c91d90b0b8414f192336fa9713ac9a5ee6d17e63ef3666377d
- SHA512
  
  a17f71643cdc657a467df9c5f72721f4e68ffd6077fa54382f71b62fb76e00a6aadb423d61ad14103cd279b4370c5fda2075396fff4975d99377efcabb37a973
- SSDEEP
  
  6144:FrvbUzkuvcBYC47l2x0vOppHKip3Hrcgrz/xHWS1JE:FrkkuveY3oXpHggf4S1m
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2