011a9e7cb0db488914ef6f54b87ec92764d9ade727739bd4e0cdd40c78ed37e1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fc18eb4d694ed721bf97c08f5200a2f2_JaffaCakes118
Size

718KB
Sample

240928-mggzxs1alq
MD5

fc18eb4d694ed721bf97c08f5200a2f2
SHA1

c4777e8c33193b17abaf5fd9f9a0ca8aa059d99e
SHA256

011a9e7cb0db488914ef6f54b87ec92764d9ade727739bd4e0cdd40c78ed37e1
SHA512

93164f3c4d29b3a19f2163072f876b9b9b8b1263157fadb3518f51890676e8693790a7719c5900ff11d3ea3942bfbc4c8eac7dd3efd3775155b7a797aed4e8ef
SSDEEP

6144:hM/in98C/WvBJIzvGO8QC2V18nVG2CPRgLXM+1mq7kycl8dk3LNr6XoRDae8N5YM:oC98CQnmGl2A+gL8+13gyc6EZou+AoX

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  fc18eb4d694ed721bf97c08f5200a2f2_JaffaCakes118
- Size
  
  718KB
- MD5
  
  fc18eb4d694ed721bf97c08f5200a2f2
- SHA1
  
  c4777e8c33193b17abaf5fd9f9a0ca8aa059d99e
- SHA256
  
  011a9e7cb0db488914ef6f54b87ec92764d9ade727739bd4e0cdd40c78ed37e1
- SHA512
  
  93164f3c4d29b3a19f2163072f876b9b9b8b1263157fadb3518f51890676e8693790a7719c5900ff11d3ea3942bfbc4c8eac7dd3efd3775155b7a797aed4e8ef
- SSDEEP
  
  6144:hM/in98C/WvBJIzvGO8QC2V18nVG2CPRgLXM+1mq7kycl8dk3LNr6XoRDae8N5YM:oC98CQnmGl2A+gL8+13gyc6EZou+AoX
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Program crash
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2