286af6400432e4bea539e148fff53ea50a01cb97c0d6237cc5ebfa4e90357914 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc8f249f64754260ba8458347e3d168e_JaffaCakes118
Size

2.1MB
Sample

240823-ve9k6aydrr
MD5

bc8f249f64754260ba8458347e3d168e
SHA1

9722f1f7c205c9f58cb8d47d13784d5a9f8d98ce
SHA256

286af6400432e4bea539e148fff53ea50a01cb97c0d6237cc5ebfa4e90357914
SHA512

6770309599a10de9f89deea0fbe5680689eded06a9d188658905b2b6a3df6658d3313e7be12940d8542139ba6d86ced5384385410e02abeb565ab46cedfebf4b
SSDEEP

49152:qISrPUQzDO89qu9K3G9UbLWLU2+Rgnzk:5QzJ9a2arRgnzk

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  bc8f249f64754260ba8458347e3d168e_JaffaCakes118
- Size
  
  2.1MB
- MD5
  
  bc8f249f64754260ba8458347e3d168e
- SHA1
  
  9722f1f7c205c9f58cb8d47d13784d5a9f8d98ce
- SHA256
  
  286af6400432e4bea539e148fff53ea50a01cb97c0d6237cc5ebfa4e90357914
- SHA512
  
  6770309599a10de9f89deea0fbe5680689eded06a9d188658905b2b6a3df6658d3313e7be12940d8542139ba6d86ced5384385410e02abeb565ab46cedfebf4b
- SSDEEP
  
  49152:qISrPUQzDO89qu9K3G9UbLWLU2+Rgnzk:5QzJ9a2arRgnzk
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2