3c5c20a7b3fa6402948ef3f4617fda21c400f8caaf733f38dd053608b9a3c42a | Triage

Sharing

General

Target

13b587afd2fb8977e030b6206a70391a_JaffaCakes118
Size

314KB
Sample

241004-rnyy8syemj
MD5

13b587afd2fb8977e030b6206a70391a
SHA1

e4cffc3467e3d30f881ada1327621333f1439daf
SHA256

3c5c20a7b3fa6402948ef3f4617fda21c400f8caaf733f38dd053608b9a3c42a
SHA512

93e8afb807223bfbc9c665aef5f616f0984f09909c5f56418eb1e4a6910d961bf14f2030b35e90e5fcd67f2f929a8447cb1284851cd7b905f6ea111c8ce4b948
SSDEEP

6144:ArAbUzkuvcBYC47l2xn88NEymFTYO67qzVxzRRwC:Ar1kuveY35YO67Wxz7wC

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  13b587afd2fb8977e030b6206a70391a_JaffaCakes118
- Size
  
  314KB
- MD5
  
  13b587afd2fb8977e030b6206a70391a
- SHA1
  
  e4cffc3467e3d30f881ada1327621333f1439daf
- SHA256
  
  3c5c20a7b3fa6402948ef3f4617fda21c400f8caaf733f38dd053608b9a3c42a
- SHA512
  
  93e8afb807223bfbc9c665aef5f616f0984f09909c5f56418eb1e4a6910d961bf14f2030b35e90e5fcd67f2f929a8447cb1284851cd7b905f6ea111c8ce4b948
- SSDEEP
  
  6144:ArAbUzkuvcBYC47l2xn88NEymFTYO67qzVxzRRwC:Ar1kuveY35YO67Wxz7wC
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2