6d9b4633bf1a0aea0b34b5a40c9a79940d6c47e86d1ef458d7038e12de8dd429 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

25c530eff3fcdbcaea4f52e215fdca2a_JaffaCakes118
Size

144KB
Sample

241008-1etgtssgra
MD5

25c530eff3fcdbcaea4f52e215fdca2a
SHA1

55f9a57aa78fb7836548e9181e9c6b32de8af17a
SHA256

6d9b4633bf1a0aea0b34b5a40c9a79940d6c47e86d1ef458d7038e12de8dd429
SHA512

a692c06b82c0c8875748549f6ae0e3b6fbb08aff390e8348149a38e448f6e9a7e3340a51f5869a21734d425fe0f73d267b86969631ca2be74afd976fc89f2f0b
SSDEEP

1536:gkTY60S9H5xOwp6jBcxNuYuXmCllHFKqUAxkAnd5Le5yO7F:1P0sH1p6jBcxNef3UAWOS5yO7F

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  25c530eff3fcdbcaea4f52e215fdca2a_JaffaCakes118
- Size
  
  144KB
- MD5
  
  25c530eff3fcdbcaea4f52e215fdca2a
- SHA1
  
  55f9a57aa78fb7836548e9181e9c6b32de8af17a
- SHA256
  
  6d9b4633bf1a0aea0b34b5a40c9a79940d6c47e86d1ef458d7038e12de8dd429
- SHA512
  
  a692c06b82c0c8875748549f6ae0e3b6fbb08aff390e8348149a38e448f6e9a7e3340a51f5869a21734d425fe0f73d267b86969631ca2be74afd976fc89f2f0b
- SSDEEP
  
  1536:gkTY60S9H5xOwp6jBcxNuYuXmCllHFKqUAxkAnd5Le5yO7F:1P0sH1p6jBcxNef3UAWOS5yO7F
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2