1d10225c069d15ead513aaa5b978593bda6834b899adf5093624e56f41201e3e | Triage

Sharing

General

Target

939eb19c03ad9f6ad82e93beb4806518_JaffaCakes118
Size

128KB
Sample

240813-sl4mda1blc
MD5

939eb19c03ad9f6ad82e93beb4806518
SHA1

99171afd9dcb00af64d392ceeac1a22da3e9a695
SHA256

1d10225c069d15ead513aaa5b978593bda6834b899adf5093624e56f41201e3e
SHA512

e914e40d249487bab9e11c1202824a8c2b69945b82f6b85f0d970f0f5c617c55cbc16278bf31c67f59eb1203accd085bbd26e37c2c9ca048d989ecdb7f050957
SSDEEP

3072:GiSkUYBQgZ+z1vezLPVr7Qe4lAtWhazqiatiPiHs:Gi3BBZ+5v0LtQx+tQauieHs

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  939eb19c03ad9f6ad82e93beb4806518_JaffaCakes118
- Size
  
  128KB
- MD5
  
  939eb19c03ad9f6ad82e93beb4806518
- SHA1
  
  99171afd9dcb00af64d392ceeac1a22da3e9a695
- SHA256
  
  1d10225c069d15ead513aaa5b978593bda6834b899adf5093624e56f41201e3e
- SHA512
  
  e914e40d249487bab9e11c1202824a8c2b69945b82f6b85f0d970f0f5c617c55cbc16278bf31c67f59eb1203accd085bbd26e37c2c9ca048d989ecdb7f050957
- SSDEEP
  
  3072:GiSkUYBQgZ+z1vezLPVr7Qe4lAtWhazqiatiPiHs:Gi3BBZ+5v0LtQx+tQauieHs
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion