02a8c7a54dfdaad73cb02b0d40836b63a464d65560a524c72a112897bc30bf7e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a9b88b2ae3176d86937be13856edd818_JaffaCakes118
Size

122KB
Sample

240819-fv5jtawclf
MD5

a9b88b2ae3176d86937be13856edd818
SHA1

b6507e493838167a390ddf3cdcd11a2df19a47e6
SHA256

02a8c7a54dfdaad73cb02b0d40836b63a464d65560a524c72a112897bc30bf7e
SHA512

8f5cdc4145b64144b2436cbd6e86039dcbd584b35d255e88bf0fd5687796484cf1ac2b2be040fdab51f318c11ee5b3793aa77b6ff55e62729bd2759f6b7a1ef9
SSDEEP

3072:fRgHyxUROHxNRAv9YM9YwknWeDF9VOp6Z:fRgSxMIYYKYJZ

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  a9b88b2ae3176d86937be13856edd818_JaffaCakes118
- Size
  
  122KB
- MD5
  
  a9b88b2ae3176d86937be13856edd818
- SHA1
  
  b6507e493838167a390ddf3cdcd11a2df19a47e6
- SHA256
  
  02a8c7a54dfdaad73cb02b0d40836b63a464d65560a524c72a112897bc30bf7e
- SHA512
  
  8f5cdc4145b64144b2436cbd6e86039dcbd584b35d255e88bf0fd5687796484cf1ac2b2be040fdab51f318c11ee5b3793aa77b6ff55e62729bd2759f6b7a1ef9
- SSDEEP
  
  3072:fRgHyxUROHxNRAv9YM9YwknWeDF9VOp6Z:fRgSxMIYYKYJZ
Score

6^/10

discovery
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2