8b35ab2253e035a9ed9a59c21236dc26e45f7ad1fb2e751990493b5d3e770b2f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a96b8624e781dc988860281a6e4c0400_JaffaCakes118
Size

144KB
Sample

240819-d4skhasbld
MD5

a96b8624e781dc988860281a6e4c0400
SHA1

804e6dff8b6b598595bef9a043ea046a176ebc9d
SHA256

8b35ab2253e035a9ed9a59c21236dc26e45f7ad1fb2e751990493b5d3e770b2f
SHA512

ad3f3c001094f2db0f922f29711fcaa38ca8b5f952713714b3c6394671bef8e0b845574430c7bedf252db09d3991ea5b875cdccd62e66bf36316fff1746a0a28
SSDEEP

3072:Nb719AQVh5XCMST/kn5/j4dr0K/iZkn0tHVg0hWNxkumaD:Nb7YSK7wt4drHekniwPB

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a96b8624e781dc988860281a6e4c0400_JaffaCakes118
- Size
  
  144KB
- MD5
  
  a96b8624e781dc988860281a6e4c0400
- SHA1
  
  804e6dff8b6b598595bef9a043ea046a176ebc9d
- SHA256
  
  8b35ab2253e035a9ed9a59c21236dc26e45f7ad1fb2e751990493b5d3e770b2f
- SHA512
  
  ad3f3c001094f2db0f922f29711fcaa38ca8b5f952713714b3c6394671bef8e0b845574430c7bedf252db09d3991ea5b875cdccd62e66bf36316fff1746a0a28
- SSDEEP
  
  3072:Nb719AQVh5XCMST/kn5/j4dr0K/iZkn0tHVg0hWNxkumaD:Nb7YSK7wt4drHekniwPB
Score

7^/10

discovery
- Executes dropped EXE
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2