5a8ff5889d08f2d9e2ca262b78f9b2f883bf1bbdc93702f1430669994bc0fe4b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15ff35548d2d060c90d7a07d592773be_JaffaCakes118
Size

316KB
Sample

241005-d3yp5axdjc
MD5

15ff35548d2d060c90d7a07d592773be
SHA1

75aabdc95755a46eb8ea9085d9880b31ffe9e43d
SHA256

5a8ff5889d08f2d9e2ca262b78f9b2f883bf1bbdc93702f1430669994bc0fe4b
SHA512

001e7d449111ffa0da47be9fbae5f67c03634bea89fca4b02186fa35681b122c5e262ac73c5db9b45192b1466b03359566d273e16fa97710861f4e51e17fc0c4
SSDEEP

6144:yribUzkuvcBYC47l2xLNaFmoKZLxtHU/TMDkW01eedmQb+xA:yr7kuveY33FJUo7MDkA6F

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  15ff35548d2d060c90d7a07d592773be_JaffaCakes118
- Size
  
  316KB
- MD5
  
  15ff35548d2d060c90d7a07d592773be
- SHA1
  
  75aabdc95755a46eb8ea9085d9880b31ffe9e43d
- SHA256
  
  5a8ff5889d08f2d9e2ca262b78f9b2f883bf1bbdc93702f1430669994bc0fe4b
- SHA512
  
  001e7d449111ffa0da47be9fbae5f67c03634bea89fca4b02186fa35681b122c5e262ac73c5db9b45192b1466b03359566d273e16fa97710861f4e51e17fc0c4
- SSDEEP
  
  6144:yribUzkuvcBYC47l2xLNaFmoKZLxtHU/TMDkW01eedmQb+xA:yr7kuveY33FJUo7MDkA6F
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2