General

  • Target

    8ef0cc383a3e27224ab9263894400c42_JaffaCakes118

  • Size

    70KB

  • Sample

    240602-wmnt4aaa7z

  • MD5

    8ef0cc383a3e27224ab9263894400c42

  • SHA1

    5f4cf4cc33c36a668b5bc6274958534d8d1e12ab

  • SHA256

    258c18d5405f12c3af0e924f83aebdf66857db401dde695cff4e21e3b934a546

  • SHA512

    3cab2a58829dbb62ff9120eb96fc2f299bd075b13d3e09000c75636c7a90415d4cd0dbbacef9dd79bf85b29fa1a04a411e9e9d3604a0d165d6e059aaf77687e7

  • SSDEEP

    1536:0ZZZZZZZZZZZZpXzzzzzzzzzzzzADypczUk+lkZJngWMqqU+2bbbAV2/S2OvvdZl:Ld5BJHMqqDL2/Ovvdr

Score
10/10

Malware Config

Targets

    • Target

      8ef0cc383a3e27224ab9263894400c42_JaffaCakes118

    • Size

      70KB

    • MD5

      8ef0cc383a3e27224ab9263894400c42

    • SHA1

      5f4cf4cc33c36a668b5bc6274958534d8d1e12ab

    • SHA256

      258c18d5405f12c3af0e924f83aebdf66857db401dde695cff4e21e3b934a546

    • SHA512

      3cab2a58829dbb62ff9120eb96fc2f299bd075b13d3e09000c75636c7a90415d4cd0dbbacef9dd79bf85b29fa1a04a411e9e9d3604a0d165d6e059aaf77687e7

    • SSDEEP

      1536:0ZZZZZZZZZZZZpXzzzzzzzzzzzzADypczUk+lkZJngWMqqU+2bbbAV2/S2OvvdZl:Ld5BJHMqqDL2/Ovvdr

    Score
    6/10
    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Matrix ATT&CK v13

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

2
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

2
T1082

Tasks