da02e0bae416d4fc3af4bdb53f57a6302b066c614c6c140939055660e35abd09 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b1f1aa6a180fb29d590a623896ef7421_JaffaCakes118
Size

17.0MB
Sample

240821-d2lzya1hlq
MD5

b1f1aa6a180fb29d590a623896ef7421
SHA1

d491da70d3e983f495e34a881257846ba091f0f2
SHA256

da02e0bae416d4fc3af4bdb53f57a6302b066c614c6c140939055660e35abd09
SHA512

aba9d05c1322e3c66dcbd6b04653f830edcb9a35b337d39c264267db8932579ec9d105690d69bf724273e2ac5174e7126d23e3b3bba96ad5cf74021857a4663b
SSDEEP

393216:rn5sZffE6edp75FXrDpj6pH5R6PhY4EdeOFSHp2cm9:r96ez71j615gw8OYHpe

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b1f1aa6a180fb29d590a623896ef7421_JaffaCakes118
- Size
  
  17.0MB
- MD5
  
  b1f1aa6a180fb29d590a623896ef7421
- SHA1
  
  d491da70d3e983f495e34a881257846ba091f0f2
- SHA256
  
  da02e0bae416d4fc3af4bdb53f57a6302b066c614c6c140939055660e35abd09
- SHA512
  
  aba9d05c1322e3c66dcbd6b04653f830edcb9a35b337d39c264267db8932579ec9d105690d69bf724273e2ac5174e7126d23e3b3bba96ad5cf74021857a4663b
- SSDEEP
  
  393216:rn5sZffE6edp75FXrDpj6pH5R6PhY4EdeOFSHp2cm9:r96ez71j615gw8OYHpe
Score

7^/10

discovery
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2