General
-
Target
2d9fa4e939cf9ac25445a72ac68b0afd_JaffaCakes118
-
Size
374KB
-
Sample
240708-ynrcqawdkq
-
MD5
2d9fa4e939cf9ac25445a72ac68b0afd
-
SHA1
9b2da684c1a55f8cdea2076fc2f89dd574f5955c
-
SHA256
84629f8136ca59171abe7c12b840dcf96a3937c2c21794cd60206a1a11a24e75
-
SHA512
10bdb61b777ef7e58c2d9e256ee5fde7d2972a2fdc10d238721060bdcfd1bab7af77ca8fe8b7e83e3a31325eb8100cbc7ea257500c59bb0c05a80a05a49a9293
-
SSDEEP
6144:KjbeiBffZUA9Xwb8d4/VXOidasC7IMFy+vEt0W4Z8MbilEPvMeBkVr3hfleOtw:KuUvg8d4tXOWasC7DcKQ0RQeI3hfleOu
Malware Config
Targets
-
-
Target
2d9fa4e939cf9ac25445a72ac68b0afd_JaffaCakes118
-
Size
374KB
-
MD5
2d9fa4e939cf9ac25445a72ac68b0afd
-
SHA1
9b2da684c1a55f8cdea2076fc2f89dd574f5955c
-
SHA256
84629f8136ca59171abe7c12b840dcf96a3937c2c21794cd60206a1a11a24e75
-
SHA512
10bdb61b777ef7e58c2d9e256ee5fde7d2972a2fdc10d238721060bdcfd1bab7af77ca8fe8b7e83e3a31325eb8100cbc7ea257500c59bb0c05a80a05a49a9293
-
SSDEEP
6144:KjbeiBffZUA9Xwb8d4/VXOidasC7IMFy+vEt0W4Z8MbilEPvMeBkVr3hfleOtw:KuUvg8d4tXOWasC7DcKQ0RQeI3hfleOu
Score6/10-
Adds Run key to start application
-
Blocklisted process makes network request
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Installer Packages
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Installer Packages
1