d5ddcc26768fa1f5bacc846f6fb120545c1d9bfd1796beaddcfd5e6fa2316713 | Triage

Sharing

General

Target

fc5a74f222069dbac1db9c93c0a60cd8_JaffaCakes118
Size

326KB
Sample

240928-p8m2csxbjp
MD5

fc5a74f222069dbac1db9c93c0a60cd8
SHA1

0b78ae47441c9d725bd51d55eca1c5bf03f206f9
SHA256

d5ddcc26768fa1f5bacc846f6fb120545c1d9bfd1796beaddcfd5e6fa2316713
SHA512

9650e389de56ca2d2ee7e727d770303c6d23636846cbc3d0853f7517bad972a8752ee69fed8c20e38365d78c9553fdf3ce3cb21372419e240d110b423662fa08
SSDEEP

6144:89+zfGla740GzBEcDHe+RnysvmfIODcDhGoO1g0eVw:c+zfGI8zPD4AOiam0Y

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  fc5a74f222069dbac1db9c93c0a60cd8_JaffaCakes118
- Size
  
  326KB
- MD5
  
  fc5a74f222069dbac1db9c93c0a60cd8
- SHA1
  
  0b78ae47441c9d725bd51d55eca1c5bf03f206f9
- SHA256
  
  d5ddcc26768fa1f5bacc846f6fb120545c1d9bfd1796beaddcfd5e6fa2316713
- SHA512
  
  9650e389de56ca2d2ee7e727d770303c6d23636846cbc3d0853f7517bad972a8752ee69fed8c20e38365d78c9553fdf3ce3cb21372419e240d110b423662fa08
- SSDEEP
  
  6144:89+zfGla740GzBEcDHe+RnysvmfIODcDhGoO1g0eVw:c+zfGI8zPD4AOiam0Y
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2