General
-
Target
d4cde21ca134d39802f2e16f0f3f6828_JaffaCakes118
-
Size
381KB
-
Sample
240908-t5ps1ayfld
-
MD5
d4cde21ca134d39802f2e16f0f3f6828
-
SHA1
6a4a954954bd98bdfb490444575ab9036adff315
-
SHA256
486df1776eaf38215d28d8f8d9a17067b712ff41d2ed653ec9767bc9477a148c
-
SHA512
4619b35b8cb9aec1e224ab4b9f94ebf7653b1f2e2f961189df325658c6a565315dafe9d9bd8ce8032791c044e83def2bd9ff5f44d9e983c8601696a38838b5f9
-
SSDEEP
6144:xEdnEOr16I1RbHFbI8hhT24HzDE7GRAIgQm4+MCJlz/f5:WdnEOrYIDrLq4HWI3m/FHz/f5
Static task
static1
Behavioral task
behavioral1
Sample
d4cde21ca134d39802f2e16f0f3f6828_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
d4cde21ca134d39802f2e16f0f3f6828_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
d4cde21ca134d39802f2e16f0f3f6828_JaffaCakes118
-
Size
381KB
-
MD5
d4cde21ca134d39802f2e16f0f3f6828
-
SHA1
6a4a954954bd98bdfb490444575ab9036adff315
-
SHA256
486df1776eaf38215d28d8f8d9a17067b712ff41d2ed653ec9767bc9477a148c
-
SHA512
4619b35b8cb9aec1e224ab4b9f94ebf7653b1f2e2f961189df325658c6a565315dafe9d9bd8ce8032791c044e83def2bd9ff5f44d9e983c8601696a38838b5f9
-
SSDEEP
6144:xEdnEOr16I1RbHFbI8hhT24HzDE7GRAIgQm4+MCJlz/f5:WdnEOrYIDrLq4HWI3m/FHz/f5
Score10/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Remote Services: SMB/Windows Admin Shares
Adversaries may use Valid Accounts to interact with a remote network share using Server Message Block (SMB).
-