8d45b5e997e8412c305d11635078b8d9efc7fea50b5b4921b4abd116361b2d43 | Triage

Sharing

General

Target

47c9ac524600b0b6975421d34fa7e35f_JaffaCakes118
Size

132KB
Sample

240715-cnc97swbqe
MD5

47c9ac524600b0b6975421d34fa7e35f
SHA1

367ec4412d9a54b1869780af5eb84ad8067c44eb
SHA256

8d45b5e997e8412c305d11635078b8d9efc7fea50b5b4921b4abd116361b2d43
SHA512

725a5b9f4274897e29fe5b48d685230779354e93faf1d85bc2fb84dc3e89677b502078f8faf9ee89e5b4a8b25abb805bbd8e6b246297f48723f78f564a00202f
SSDEEP

3072:joW8n7SsoLEvlmEi0kjmUJ6EbfQKcYQoBOAtBW97mjcuNObwMT3:E1sOlQbrt9BW97mjcPwMT

Score

5^/10

Malware Config

Targets

- Target
  
  47c9ac524600b0b6975421d34fa7e35f_JaffaCakes118
- Size
  
  132KB
- MD5
  
  47c9ac524600b0b6975421d34fa7e35f
- SHA1
  
  367ec4412d9a54b1869780af5eb84ad8067c44eb
- SHA256
  
  8d45b5e997e8412c305d11635078b8d9efc7fea50b5b4921b4abd116361b2d43
- SHA512
  
  725a5b9f4274897e29fe5b48d685230779354e93faf1d85bc2fb84dc3e89677b502078f8faf9ee89e5b4a8b25abb805bbd8e6b246297f48723f78f564a00202f
- SSDEEP
  
  3072:joW8n7SsoLEvlmEi0kjmUJ6EbfQKcYQoBOAtBW97mjcuNObwMT3:E1sOlQbrt9BW97mjcPwMT
Score

5^/10
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Replication Through Removable Media

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Replication Through Removable Media

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2