6a312900573ba00afa2e25f77398ba270fca109682fb6d6f3e1213cc72a55aa3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2ca8f29ba368d742a2e4d0510eb50298_JaffaCakes118
Size

26KB
Sample

241009-hhsetszdnn
MD5

2ca8f29ba368d742a2e4d0510eb50298
SHA1

efc2dfa11cc35da427bffe10e256505ba3807468
SHA256

6a312900573ba00afa2e25f77398ba270fca109682fb6d6f3e1213cc72a55aa3
SHA512

046d873e373ad9595ac522d2ec515d3d2f832b33d3584337dfe158b14a9af9a3997fe43b84b68a21fd518d4b347f2039ee2b2b4820f8a0211919e9637308019d
SSDEEP

384:jIpOt0W9/nTemX60Wp9FfgaTxu7YkR4DaJpzGtim7Hri+U97LSbi:jwaZ9/TemXf49FfoYkRugpzKi/BLii

Score

6^/10

collection discovery

Malware Config

Targets

- Target
  
  2ca8f29ba368d742a2e4d0510eb50298_JaffaCakes118
- Size
  
  26KB
- MD5
  
  2ca8f29ba368d742a2e4d0510eb50298
- SHA1
  
  efc2dfa11cc35da427bffe10e256505ba3807468
- SHA256
  
  6a312900573ba00afa2e25f77398ba270fca109682fb6d6f3e1213cc72a55aa3
- SHA512
  
  046d873e373ad9595ac522d2ec515d3d2f832b33d3584337dfe158b14a9af9a3997fe43b84b68a21fd518d4b347f2039ee2b2b4820f8a0211919e9637308019d
- SSDEEP
  
  384:jIpOt0W9/nTemX60Wp9FfgaTxu7YkR4DaJpzGtim7Hri+U97LSbi:jwaZ9/TemXf49FfoYkRugpzKi/BLii
Score

6^/10

collection discovery
- Accesses Microsoft Outlook profiles
  collection
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Email Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

collectiondiscovery

behavioral2