General

  • Target

    10ae2eec603f1fee8ae45b304b5ea908_JaffaCakes118

  • Size

    97KB

  • Sample

    240503-q6wq6abg57

  • MD5

    10ae2eec603f1fee8ae45b304b5ea908

  • SHA1

    16a225f39aa844b0bb6f175a8c4f7654a829c091

  • SHA256

    f84327a63baf64d5c82b4f6f0d143e92827629c85ae46185dad40b24a89fa541

  • SHA512

    e11ca12dead4f8978ec77c2fad554b92d2fa3ef971d020f759c45fc1dbac207d9051ebc5e45a5faf3337dbe79f8cdda937546a8dcc8c8e3a36ac00e06773e5f5

  • SSDEEP

    1536:uZZZZZZZZZZZZpXzzzzzzzzzzzzV9rXounV98hbHnAEMqqU+2bbbAV2/S2LNmHkD:4BounVyFHFMqqDL2/LgHkc2

Malware Config

Targets

    • Target

      10ae2eec603f1fee8ae45b304b5ea908_JaffaCakes118

    • Size

      97KB

    • MD5

      10ae2eec603f1fee8ae45b304b5ea908

    • SHA1

      16a225f39aa844b0bb6f175a8c4f7654a829c091

    • SHA256

      f84327a63baf64d5c82b4f6f0d143e92827629c85ae46185dad40b24a89fa541

    • SHA512

      e11ca12dead4f8978ec77c2fad554b92d2fa3ef971d020f759c45fc1dbac207d9051ebc5e45a5faf3337dbe79f8cdda937546a8dcc8c8e3a36ac00e06773e5f5

    • SSDEEP

      1536:uZZZZZZZZZZZZpXzzzzzzzzzzzzV9rXounV98hbHnAEMqqU+2bbbAV2/S2LNmHkD:4BounVyFHFMqqDL2/LgHkc2

    • GandCrab payload

    • Gandcrab

      Gandcrab is a Trojan horse that encrypts files on a computer.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks