9f4ba357ff8eed74144b7826e7db2757ef01f77185cf0a2e9d8225b56d662704 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

37cf17d2b67b738171b2a5152f2e9da4_JaffaCakes118
Size

272KB
Sample

240711-frh7easgnc
MD5

37cf17d2b67b738171b2a5152f2e9da4
SHA1

cd82d604346bb85ec810b8c620d77913d8c8afc9
SHA256

9f4ba357ff8eed74144b7826e7db2757ef01f77185cf0a2e9d8225b56d662704
SHA512

ab9e8cf7ee3ee9aa318ee3a53b86113f903e1d391963b3447eba9c096caaea052e095b82878fa1ae95c12df8b911010eb86ce714bc9ba34d38704d3b5ba3783c
SSDEEP

3072:6eiVD+EmUSLOUprPsbe9NLteiVD+EmUlrvGdX/eU6bjT4:AViEteOkViEtlax2jE

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  37cf17d2b67b738171b2a5152f2e9da4_JaffaCakes118
- Size
  
  272KB
- MD5
  
  37cf17d2b67b738171b2a5152f2e9da4
- SHA1
  
  cd82d604346bb85ec810b8c620d77913d8c8afc9
- SHA256
  
  9f4ba357ff8eed74144b7826e7db2757ef01f77185cf0a2e9d8225b56d662704
- SHA512
  
  ab9e8cf7ee3ee9aa318ee3a53b86113f903e1d391963b3447eba9c096caaea052e095b82878fa1ae95c12df8b911010eb86ce714bc9ba34d38704d3b5ba3783c
- SSDEEP
  
  3072:6eiVD+EmUSLOUprPsbe9NLteiVD+EmUlrvGdX/eU6bjT4:AViEteOkViEtlax2jE
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2