0cb000ad3f0e5825d524a2a248a4aaa178f5455681e4c70f657370145f9115fb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07f26bef4761baf02a5266f06abe3ac9_JaffaCakes118
Size

303KB
Sample

241001-3y5ejs1bld
MD5

07f26bef4761baf02a5266f06abe3ac9
SHA1

2644add633c78ca59b4ffd20b499eef3aafb8fb4
SHA256

0cb000ad3f0e5825d524a2a248a4aaa178f5455681e4c70f657370145f9115fb
SHA512

bb69e7e44f7e6f137465067c709342cc707368aa1d13302193384f728bc4dbf52b7869d67fc3473aaa09fa564195030c8d12742a157dd3fb18e607652a8d024c
SSDEEP

6144:Urkp9uEo2S1YnQmCX492DkwNP3qpYFqrtZJ9jEvyQzjBR2JYRcK7uYX:Urk/u6/eIo49PJ9YvBzlL

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  07f26bef4761baf02a5266f06abe3ac9_JaffaCakes118
- Size
  
  303KB
- MD5
  
  07f26bef4761baf02a5266f06abe3ac9
- SHA1
  
  2644add633c78ca59b4ffd20b499eef3aafb8fb4
- SHA256
  
  0cb000ad3f0e5825d524a2a248a4aaa178f5455681e4c70f657370145f9115fb
- SHA512
  
  bb69e7e44f7e6f137465067c709342cc707368aa1d13302193384f728bc4dbf52b7869d67fc3473aaa09fa564195030c8d12742a157dd3fb18e607652a8d024c
- SSDEEP
  
  6144:Urkp9uEo2S1YnQmCX492DkwNP3qpYFqrtZJ9jEvyQzjBR2JYRcK7uYX:Urk/u6/eIo49PJ9YvBzlL
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2