cae7d3e806f31c377a8f90c19a0abf568d66b9ca070e82124682849e21dd448a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

157d7cd2da798c5e540c12f8dbf3419c_JaffaCakes118
Size

314KB
Sample

241005-ayhxbszblg
MD5

157d7cd2da798c5e540c12f8dbf3419c
SHA1

90685e20b61d8915ef29983900f43906fe8a2fe7
SHA256

cae7d3e806f31c377a8f90c19a0abf568d66b9ca070e82124682849e21dd448a
SHA512

412cf37d39420a28a13a1761838d41f6bb8c6d00741ee379a67c24f6aa1d159ec919045eed393b46640f4e83d50704bc00657da2d86acc23bc21165349ccfcbf
SSDEEP

6144:orAbUzkuvcBYC47l2xn88NEymFTYO67qzVxzRRwrT:or1kuveY35YO67Wxz7wX

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  157d7cd2da798c5e540c12f8dbf3419c_JaffaCakes118
- Size
  
  314KB
- MD5
  
  157d7cd2da798c5e540c12f8dbf3419c
- SHA1
  
  90685e20b61d8915ef29983900f43906fe8a2fe7
- SHA256
  
  cae7d3e806f31c377a8f90c19a0abf568d66b9ca070e82124682849e21dd448a
- SHA512
  
  412cf37d39420a28a13a1761838d41f6bb8c6d00741ee379a67c24f6aa1d159ec919045eed393b46640f4e83d50704bc00657da2d86acc23bc21165349ccfcbf
- SSDEEP
  
  6144:orAbUzkuvcBYC47l2xn88NEymFTYO67qzVxzRRwrT:or1kuveY35YO67Wxz7wX
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2