Overview

overview

10

Static

static

3

a6d8d86e7e...18.exe

windows7-x64

10

a6d8d86e7e...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    a6d8d86e7ee83562e496719049654e7d_JaffaCakes118

  • Size

    151KB

  • Sample

    240818-qsb5lavhnf

  • MD5

    a6d8d86e7ee83562e496719049654e7d

  • SHA1

    71c4550319f59ff5a02ae092a197cb00614b3e5e

  • SHA256

    78e87ebfc3bdfda98c228f48d7ecb8f74f68df014c3fc8157b16154e1b80dedd

  • SHA512

    651bf9474d55733895d5621bc269697566ff2899a4d5e8e09d7e3e96e6288a496f66be6212d22fb42c11dd02968c15c23e09e970cbff2c2be51fc1314398fed0

  • SSDEEP

    3072:YqVwg/ivu5jEedxsu2ENwjDtT6x/gtAPM6YviUzWupalked:/VwgrEGSu2DjDYuA0VHzBalz

Score
10/10
discoveryevasion

Malware Config

Targets

    • Target

      a6d8d86e7ee83562e496719049654e7d_JaffaCakes118

    • Size

      151KB

    • MD5

      a6d8d86e7ee83562e496719049654e7d

    • SHA1

      71c4550319f59ff5a02ae092a197cb00614b3e5e

    • SHA256

      78e87ebfc3bdfda98c228f48d7ecb8f74f68df014c3fc8157b16154e1b80dedd

    • SHA512

      651bf9474d55733895d5621bc269697566ff2899a4d5e8e09d7e3e96e6288a496f66be6212d22fb42c11dd02968c15c23e09e970cbff2c2be51fc1314398fed0

    • SSDEEP

      3072:YqVwg/ivu5jEedxsu2ENwjDtT6x/gtAPM6YviUzWupalked:/VwgrEGSu2DjDYuA0VHzBalz

    Score
    10/10
    discoveryevasion

    • Modifies visibility of file extensions in Explorer

      evasion

    • Modifies visiblity of hidden/system files in Explorer

      evasion

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks