General

  • Target

    d89c6f954474e961549642e91628a826_JaffaCakes118

  • Size

    128KB

  • Sample

    240910-t68mhavemh

  • MD5

    d89c6f954474e961549642e91628a826

  • SHA1

    69e29b80fff550c06be3ef4f5f853fa8fcb40d44

  • SHA256

    87bffec98fee22118bba4bc9fdf1dc59d8b6924fcaa628eebedb36473fd06128

  • SHA512

    643117ae9dfa711d7b915f92d4b55d1ccb1af3c5f1a4cbf9c9f68c6b206ee9798480bd862b40577d856f36f494927a961d846b03b18c99f0cc4e02bf8dae75ae

  • SSDEEP

    3072:CFk3hbdlylKsgqopeJBWhZFGkE+cL2NdARDlVuvqd+cA:Kk3hbdlylKsgqopeJBWhZFVE+W2NdABe

Score
10/10

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

https://fishingonline.live/goldenfish/posgoldenfish.php

Targets

    • Target

      d89c6f954474e961549642e91628a826_JaffaCakes118

    • Size

      128KB

    • MD5

      d89c6f954474e961549642e91628a826

    • SHA1

      69e29b80fff550c06be3ef4f5f853fa8fcb40d44

    • SHA256

      87bffec98fee22118bba4bc9fdf1dc59d8b6924fcaa628eebedb36473fd06128

    • SHA512

      643117ae9dfa711d7b915f92d4b55d1ccb1af3c5f1a4cbf9c9f68c6b206ee9798480bd862b40577d856f36f494927a961d846b03b18c99f0cc4e02bf8dae75ae

    • SSDEEP

      3072:CFk3hbdlylKsgqopeJBWhZFGkE+cL2NdARDlVuvqd+cA:Kk3hbdlylKsgqopeJBWhZFVE+W2NdABe

    Score
    10/10
    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks