Overview

overview

6

Static

static

3

a915c74b7e...18.exe

windows7-x64

6

a915c74b7e...18.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    a915c74b7e3f795f4d64eef0ed86363a_JaffaCakes118

  • Size

    1.2MB

  • Sample

    240819-b5r91s1apq

  • MD5

    a915c74b7e3f795f4d64eef0ed86363a

  • SHA1

    dbba333c6495a79e783be7a3c5214c6fc0a21d1c

  • SHA256

    5b1270026cbc261ecb09525b398cbc798cc4943f15505c3207195d7fd738050a

  • SHA512

    957160acfc20cf4c7ef0bceb79a58692c1b19e30b4bf83434010c491583f93203b05d878318afd3c407ee512e2cba7954ffce9fc6ad7fdb0b49021cb96ff7a8c

  • SSDEEP

    24576:4kkBUgnyu4MUEb7wQiSRHW/nSnmpfGlPnDv2QNgGpThSRT/z+mpLuQajkbB:GBvnV4MUkliSR2/SnWsPDvLuetSEmLJJ

Score
6/10
discovery

Malware Config

Targets

    • Target

      a915c74b7e3f795f4d64eef0ed86363a_JaffaCakes118

    • Size

      1.2MB

    • MD5

      a915c74b7e3f795f4d64eef0ed86363a

    • SHA1

      dbba333c6495a79e783be7a3c5214c6fc0a21d1c

    • SHA256

      5b1270026cbc261ecb09525b398cbc798cc4943f15505c3207195d7fd738050a

    • SHA512

      957160acfc20cf4c7ef0bceb79a58692c1b19e30b4bf83434010c491583f93203b05d878318afd3c407ee512e2cba7954ffce9fc6ad7fdb0b49021cb96ff7a8c

    • SSDEEP

      24576:4kkBUgnyu4MUEb7wQiSRHW/nSnmpfGlPnDv2QNgGpThSRT/z+mpLuQajkbB:GBvnV4MUkliSR2/SnWsPDvLuetSEmLJJ

    Score
    6/10
    discovery

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks