bcb5599f590208734756da9f4a41b63fda6e4ed5df5be5622abae562844992c7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e06aafdf3c3aa6ad64a37b7e56492047_JaffaCakes118
Size

171KB
Sample

240914-r8h4hszamm
MD5

e06aafdf3c3aa6ad64a37b7e56492047
SHA1

e8c5c1fcacf5b70d59c9cbe47d2b677c7f8db639
SHA256

bcb5599f590208734756da9f4a41b63fda6e4ed5df5be5622abae562844992c7
SHA512

b14405c1a05eb4b8e9611ac49c98e83982b5df07035fb6c3aec5dc0e5acf28c5359522f4abe7f22877e03036e47a64df28775d8a1b74e506e8a05660adf5df0d
SSDEEP

3072:pemNsQrvByL3stwFnmD4/PsFxDKD5yji2EoTGUdP55hoAbr7Ig:vlML3mBcgJKNyjgoTGOb/r75

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  e06aafdf3c3aa6ad64a37b7e56492047_JaffaCakes118
- Size
  
  171KB
- MD5
  
  e06aafdf3c3aa6ad64a37b7e56492047
- SHA1
  
  e8c5c1fcacf5b70d59c9cbe47d2b677c7f8db639
- SHA256
  
  bcb5599f590208734756da9f4a41b63fda6e4ed5df5be5622abae562844992c7
- SHA512
  
  b14405c1a05eb4b8e9611ac49c98e83982b5df07035fb6c3aec5dc0e5acf28c5359522f4abe7f22877e03036e47a64df28775d8a1b74e506e8a05660adf5df0d
- SSDEEP
  
  3072:pemNsQrvByL3stwFnmD4/PsFxDKD5yji2EoTGUdP55hoAbr7Ig:vlML3mBcgJKNyjgoTGOb/r75
Score

6^/10

discovery
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2