960893242de2cfe98c0ab118e4baa924ef1531da0bff6c51aa2b0fb15f22afa6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1787ddb0154751fbb802d3f7be1a2520_JaffaCakes118
Size

634KB
Sample

241005-nqp8bswhnc
MD5

1787ddb0154751fbb802d3f7be1a2520
SHA1

2a69ef01a2c28904ecf33e6d3c59c6e7c8d4630e
SHA256

960893242de2cfe98c0ab118e4baa924ef1531da0bff6c51aa2b0fb15f22afa6
SHA512

776485b813d4baf9b2dc7ca62518c893c24d0de7e1e3545866f94ee7ff2a160a88be87ba7c77d784d4cfe82712559748233248a3f1b95cfd1022c303a1e13761
SSDEEP

12288:1MsSjzzgecFXhgXSjvRak+LEe7KfiqJfrS1Q2I7XHgZQKhJgeCm8QzQ:1MsSjzzg7gCjF+LXOlJTS1gLHgZpJEIU

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  1787ddb0154751fbb802d3f7be1a2520_JaffaCakes118
- Size
  
  634KB
- MD5
  
  1787ddb0154751fbb802d3f7be1a2520
- SHA1
  
  2a69ef01a2c28904ecf33e6d3c59c6e7c8d4630e
- SHA256
  
  960893242de2cfe98c0ab118e4baa924ef1531da0bff6c51aa2b0fb15f22afa6
- SHA512
  
  776485b813d4baf9b2dc7ca62518c893c24d0de7e1e3545866f94ee7ff2a160a88be87ba7c77d784d4cfe82712559748233248a3f1b95cfd1022c303a1e13761
- SSDEEP
  
  12288:1MsSjzzgecFXhgXSjvRak+LEe7KfiqJfrS1Q2I7XHgZQKhJgeCm8QzQ:1MsSjzzg7gCjF+LXOlJTS1gLHgZpJEIU
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2