Overview

overview

10

Static

static

10

f6c6b4d83c...18.msi

windows7-x64

6

f6c6b4d83c...18.msi

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f6c6b4d83cfffbfea44b65d4315d05c0_JaffaCakes118

  • Size

    384KB

  • Sample

    240925-yxsxxaycrf

  • MD5

    f6c6b4d83cfffbfea44b65d4315d05c0

  • SHA1

    acefb1b80fd058488207cb3898ce61c37ddcc808

  • SHA256

    f41313345680edbd1bf0666e8233ba0436a13ecf6c3ab98606580099748b415b

  • SHA512

    b8864d3e6d505eac17403e330f3cfbde648bcc4cda07d5fc5f3c1af8ff66a2f7c2601e8e422eb171f3117494644fc54362156891b313d406ffb5c153091c5fa8

  • SSDEEP

    6144:BbZjgS007NNMX/+DoklCAFNWClCA+jp02GmaZ/ZJSEPavLFjt+Wk:BbZNNNzbCClCA+jp02GmWhJnav5jUX

Score
10/10
rattypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      f6c6b4d83cfffbfea44b65d4315d05c0_JaffaCakes118

    • Size

      384KB

    • MD5

      f6c6b4d83cfffbfea44b65d4315d05c0

    • SHA1

      acefb1b80fd058488207cb3898ce61c37ddcc808

    • SHA256

      f41313345680edbd1bf0666e8233ba0436a13ecf6c3ab98606580099748b415b

    • SHA512

      b8864d3e6d505eac17403e330f3cfbde648bcc4cda07d5fc5f3c1af8ff66a2f7c2601e8e422eb171f3117494644fc54362156891b313d406ffb5c153091c5fa8

    • SSDEEP

      6144:BbZjgS007NNMX/+DoklCAFNWClCA+jp02GmaZ/ZJSEPavLFjt+Wk:BbZNNNzbCClCA+jp02GmWhJnav5jUX

    Score
    6/10
    persistenceprivilege_escalation

    • Blocklisted process makes network request

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks