117e7a74e02c0201a62f1f4844a04d734aeb527e88b6adac94c504fddc642eb8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b208773817582a8e2013d8b416375f70_JaffaCakes118
Size

460KB
Sample

240821-el5msasgnp
MD5

b208773817582a8e2013d8b416375f70
SHA1

1be0edcf60d447145f5a8ffc5cc27ffbc0de5423
SHA256

117e7a74e02c0201a62f1f4844a04d734aeb527e88b6adac94c504fddc642eb8
SHA512

1c4cbb9958c3febf2aafac5d41cc0e0136bd563717d9084d96573ae3e43616311e125cd71c37fb1e6c23cbc9542dd8d73ce27bcce9e8ab32203cb68dcdb77a17
SSDEEP

3072:tkhYIy5Jk7dRz1iASs/rYo75lKsCp7a/EliKxfJkxbPL1dypZQaSJVr+VP1:YYIy5JmRz1iAJiyGxw1dy7QaSDrs

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b208773817582a8e2013d8b416375f70_JaffaCakes118
- Size
  
  460KB
- MD5
  
  b208773817582a8e2013d8b416375f70
- SHA1
  
  1be0edcf60d447145f5a8ffc5cc27ffbc0de5423
- SHA256
  
  117e7a74e02c0201a62f1f4844a04d734aeb527e88b6adac94c504fddc642eb8
- SHA512
  
  1c4cbb9958c3febf2aafac5d41cc0e0136bd563717d9084d96573ae3e43616311e125cd71c37fb1e6c23cbc9542dd8d73ce27bcce9e8ab32203cb68dcdb77a17
- SSDEEP
  
  3072:tkhYIy5Jk7dRz1iASs/rYo75lKsCp7a/EliKxfJkxbPL1dypZQaSJVr+VP1:YYIy5JmRz1iAJiyGxw1dy7QaSDrs
Score

7^/10

discovery
- Deletes itself
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

Remote System Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2