0091c0b5c287f8d52fe7933ddfdd5e6e12a7b309db39ed2bd8acbc4fc1047c1f | Triage

Sharing

General

Target

eab4ebaf1dcca2b019223a1e354f9aa3_JaffaCakes118
Size

1.1MB
Sample

240919-glsdkatenc
MD5

eab4ebaf1dcca2b019223a1e354f9aa3
SHA1

178fe0bfaf34665ef337fd3988403dfce4249ba2
SHA256

0091c0b5c287f8d52fe7933ddfdd5e6e12a7b309db39ed2bd8acbc4fc1047c1f
SHA512

181ec1ed218afedfcb9e0ece32627dd847ebeb0e8f33a425b8e9c8007e4e9d109b129b4bcf8b76e078813b0a95e95591257b0b2c18579aa1a0764b91df2d302d
SSDEEP

24576:iSKt+3FNyMEw96rPHMS3u4g/brAqn/4Lu7BI7/hfCSfb:iSK8owkrVbgTcuQLoy74

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  eab4ebaf1dcca2b019223a1e354f9aa3_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  eab4ebaf1dcca2b019223a1e354f9aa3
- SHA1
  
  178fe0bfaf34665ef337fd3988403dfce4249ba2
- SHA256
  
  0091c0b5c287f8d52fe7933ddfdd5e6e12a7b309db39ed2bd8acbc4fc1047c1f
- SHA512
  
  181ec1ed218afedfcb9e0ece32627dd847ebeb0e8f33a425b8e9c8007e4e9d109b129b4bcf8b76e078813b0a95e95591257b0b2c18579aa1a0764b91df2d302d
- SSDEEP
  
  24576:iSKt+3FNyMEw96rPHMS3u4g/brAqn/4Lu7BI7/hfCSfb:iSK8owkrVbgTcuQLoy74
Score

7^/10

discovery
- Loads dropped DLL
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2