59d4973cee991630682e3be0f703220edd8b50a761b990220ee732fa72440013 | Triage

Sharing

General

Target

38169a929ba500af38d4a4d9a495a847_JaffaCakes118
Size

151KB
Sample

240512-ea47waeh6s
MD5

38169a929ba500af38d4a4d9a495a847
SHA1

90e1a60fefe81040c293666f05e91290cdc00218
SHA256

59d4973cee991630682e3be0f703220edd8b50a761b990220ee732fa72440013
SHA512

18ff4eba46f708f60c2c05459bd4d4f2b4e3052d44556f89b9761ff5a36e0f39499c78255aebca9984fe8017091ac4984a3f8e3049805c7d28e676e3dece98e9
SSDEEP

3072:sIuX+yPYxiAR0Xe7hqNoFeQo/ENPm6p9H9JitJh7W85TVr2sJvu0k0sD:JfRxiAAe7hqweZEI6v9stfBTVr2Eu0k5

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  38169a929ba500af38d4a4d9a495a847_JaffaCakes118
- Size
  
  151KB
- MD5
  
  38169a929ba500af38d4a4d9a495a847
- SHA1
  
  90e1a60fefe81040c293666f05e91290cdc00218
- SHA256
  
  59d4973cee991630682e3be0f703220edd8b50a761b990220ee732fa72440013
- SHA512
  
  18ff4eba46f708f60c2c05459bd4d4f2b4e3052d44556f89b9761ff5a36e0f39499c78255aebca9984fe8017091ac4984a3f8e3049805c7d28e676e3dece98e9
- SSDEEP
  
  3072:sIuX+yPYxiAR0Xe7hqNoFeQo/ENPm6p9H9JitJh7W85TVr2sJvu0k0sD:JfRxiAAe7hqweZEI6v9stfBTVr2Eu0k5
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2