03987663197d1a374d87c212d65bbd5154aeade6afc42ec599f27119bf92a434 | Triage

Sharing

General

Target

3e93635380eb29c2f288d41dba7c0b0e_JaffaCakes118
Size

314KB
Sample

241013-jdsqgavfrg
MD5

3e93635380eb29c2f288d41dba7c0b0e
SHA1

2da954bd8947fe3361290605513d1cca32c45eaa
SHA256

03987663197d1a374d87c212d65bbd5154aeade6afc42ec599f27119bf92a434
SHA512

3133297ee6d3e7e657b49f1055385e01c6a1e496e0e4a4d4d35452bc1c9041aeeae3470261a337282b89157ee8150cf4538ee634897541b0510807a53a0bafb2
SSDEEP

6144:QrAbUzkuvcBYC47l2xn88NEymFTYO67qzVxzRRw7:Qr1kuveY35YO67Wxz7w7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3e93635380eb29c2f288d41dba7c0b0e_JaffaCakes118
- Size
  
  314KB
- MD5
  
  3e93635380eb29c2f288d41dba7c0b0e
- SHA1
  
  2da954bd8947fe3361290605513d1cca32c45eaa
- SHA256
  
  03987663197d1a374d87c212d65bbd5154aeade6afc42ec599f27119bf92a434
- SHA512
  
  3133297ee6d3e7e657b49f1055385e01c6a1e496e0e4a4d4d35452bc1c9041aeeae3470261a337282b89157ee8150cf4538ee634897541b0510807a53a0bafb2
- SSDEEP
  
  6144:QrAbUzkuvcBYC47l2xn88NEymFTYO67qzVxzRRw7:Qr1kuveY35YO67Wxz7w7
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2