General

  • Target

    3eeca9f820db36461ea128fa52f075a4_JaffaCakes118

  • Size

    127KB

  • Sample

    240513-lzef3sac82

  • MD5

    3eeca9f820db36461ea128fa52f075a4

  • SHA1

    35939bb9c0554e70e93f07ec90728145e003fd54

  • SHA256

    24e74c087543d361fa9fa46e2693f95710243b0c8b30e97134561804f54572c8

  • SHA512

    f3a1675968aff46a4c2b3a3019a2593b90747961b299dd5c422ca59887d57c26b1b8f00177df6c2ed17e6f462c958db5670e7aa01cc504a82b7617ac686c7520

  • SSDEEP

    3072:05dnu0W5ZyYi+KpM6TWrwrtGGF4IfhcNM+1Uh:EnxIZhKp1fFpfD+1U

Score
10/10

Malware Config

Targets

    • Target

      3eeca9f820db36461ea128fa52f075a4_JaffaCakes118

    • Size

      127KB

    • MD5

      3eeca9f820db36461ea128fa52f075a4

    • SHA1

      35939bb9c0554e70e93f07ec90728145e003fd54

    • SHA256

      24e74c087543d361fa9fa46e2693f95710243b0c8b30e97134561804f54572c8

    • SHA512

      f3a1675968aff46a4c2b3a3019a2593b90747961b299dd5c422ca59887d57c26b1b8f00177df6c2ed17e6f462c958db5670e7aa01cc504a82b7617ac686c7520

    • SSDEEP

      3072:05dnu0W5ZyYi+KpM6TWrwrtGGF4IfhcNM+1Uh:EnxIZhKp1fFpfD+1U

    Score
    10/10
    • Modifies firewall policy service

    • Drops file in Drivers directory

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks