52f3c62bf9c2ac7c8b59423b3cf190e042246235aa3d5d0ae440bd390e222c1c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

778491fd850adeb7062c816b36e6d358_JaffaCakes118
Size

158KB
Sample

240727-j91e7azbkb
MD5

778491fd850adeb7062c816b36e6d358
SHA1

cf18e09a6064b648ef6f648a978fb1f25c522d8e
SHA256

52f3c62bf9c2ac7c8b59423b3cf190e042246235aa3d5d0ae440bd390e222c1c
SHA512

25b19ad0816a5b34de78eaa5f7bcb6bb478deb119861760c2ac82e6e60f03ae3aaab75d021c62fafd5297b71fa2150a2459f5f9e2c4786bac81eb24fa01081e6
SSDEEP

3072:Ppp3FIIC9+iBkyGCaJ5T0nraIFEFQtiADNWtkxLKgHD2Y0jkb:PDnzeVuQtx4tkxLKgj2bji

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  778491fd850adeb7062c816b36e6d358_JaffaCakes118
- Size
  
  158KB
- MD5
  
  778491fd850adeb7062c816b36e6d358
- SHA1
  
  cf18e09a6064b648ef6f648a978fb1f25c522d8e
- SHA256
  
  52f3c62bf9c2ac7c8b59423b3cf190e042246235aa3d5d0ae440bd390e222c1c
- SHA512
  
  25b19ad0816a5b34de78eaa5f7bcb6bb478deb119861760c2ac82e6e60f03ae3aaab75d021c62fafd5297b71fa2150a2459f5f9e2c4786bac81eb24fa01081e6
- SSDEEP
  
  3072:Ppp3FIIC9+iBkyGCaJ5T0nraIFEFQtiADNWtkxLKgHD2Y0jkb:PDnzeVuQtx4tkxLKgj2bji
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion