931cea828e269c91e72f49d54b0cc50694cc3c2412f0dad7db2c138205f62733 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c7a5e173e38d5f3412326b29395b63d2_JaffaCakes118
Size

128KB
Sample

240828-zwgc6awcre
MD5

c7a5e173e38d5f3412326b29395b63d2
SHA1

38d1213a7d11687b7654dc6024596afec8c01a12
SHA256

931cea828e269c91e72f49d54b0cc50694cc3c2412f0dad7db2c138205f62733
SHA512

16da36c9118a505084fbfce73d8aa255c27d1afa7a418d8e7e1cdeeba41070af02086b1ee75d1fa15b0ec9a76f9da064939bfc7eb72c942bccc07279a9c8190a
SSDEEP

3072:K/6wJQi3diipak1sGb6cUmGvmul4VKwXzL9Ho:Y6tiNik/YnlEy

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  c7a5e173e38d5f3412326b29395b63d2_JaffaCakes118
- Size
  
  128KB
- MD5
  
  c7a5e173e38d5f3412326b29395b63d2
- SHA1
  
  38d1213a7d11687b7654dc6024596afec8c01a12
- SHA256
  
  931cea828e269c91e72f49d54b0cc50694cc3c2412f0dad7db2c138205f62733
- SHA512
  
  16da36c9118a505084fbfce73d8aa255c27d1afa7a418d8e7e1cdeeba41070af02086b1ee75d1fa15b0ec9a76f9da064939bfc7eb72c942bccc07279a9c8190a
- SSDEEP
  
  3072:K/6wJQi3diipak1sGb6cUmGvmul4VKwXzL9Ho:Y6tiNik/YnlEy
Score

6^/10

discovery
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2