0ac201b6ac5ff101a7ccc270e0ea335565e82cba2158c8307361b713db97f191 | Triage

Sharing

General

Target

837964842e2c201466c95a98029858a7_JaffaCakes118
Size

228KB
Sample

240530-jktlcaba7v
MD5

837964842e2c201466c95a98029858a7
SHA1

5d66a830ce4377adfa9f078b0e162f0863e3345b
SHA256

0ac201b6ac5ff101a7ccc270e0ea335565e82cba2158c8307361b713db97f191
SHA512

cb6a3cc4062cc22c06dab4a87162329d5ac4ca435ded79888c09f6e7fc8a84a318ff0af3ca7ff8f9951065779cc617279d7b894b9aef7dfa5dddd478b27fcf7f
SSDEEP

1536:1Mz/UcMJfYvOCnOyOcObvJO9xXON2nL8fOEJ6OFFCMnODdg2giBodBh/ntMTFES:rlBpbcSIEJBIq2giBodBh/ntMTuS

Score

6^/10

Malware Config

Targets

- Target
  
  837964842e2c201466c95a98029858a7_JaffaCakes118
- Size
  
  228KB
- MD5
  
  837964842e2c201466c95a98029858a7
- SHA1
  
  5d66a830ce4377adfa9f078b0e162f0863e3345b
- SHA256
  
  0ac201b6ac5ff101a7ccc270e0ea335565e82cba2158c8307361b713db97f191
- SHA512
  
  cb6a3cc4062cc22c06dab4a87162329d5ac4ca435ded79888c09f6e7fc8a84a318ff0af3ca7ff8f9951065779cc617279d7b894b9aef7dfa5dddd478b27fcf7f
- SSDEEP
  
  1536:1Mz/UcMJfYvOCnOyOcObvJO9xXON2nL8fOEJ6OFFCMnODdg2giBodBh/ntMTFES:rlBpbcSIEJBIq2giBodBh/ntMTuS
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2