f6704719b6b975d8e238d152d103537bf8c6acc47c98cab85f0d34b7649e2a14 | Triage

Sharing

General

Target

3eb1cff3bea54145478b99a2c351f515_JaffaCakes118
Size

100KB
Sample

241013-jv6cwswdjb
MD5

3eb1cff3bea54145478b99a2c351f515
SHA1

0f2e0bd6122a02438668004a0022eb54b7d40b31
SHA256

f6704719b6b975d8e238d152d103537bf8c6acc47c98cab85f0d34b7649e2a14
SHA512

9bd109e36593eb91c0f8966e9a931f54f03ad43ae0b990a0790adc785012920213439af612134ac75b4727280598e99dfb4503994ca8032d17091e72c8fc1142
SSDEEP

768:/FvjWAz06r0h81GYP39r0uziePNPOFONsZBdv5QsPc8IgOkt4R:/d13Jrie1mFFBplPc8HOkCR

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  3eb1cff3bea54145478b99a2c351f515_JaffaCakes118
- Size
  
  100KB
- MD5
  
  3eb1cff3bea54145478b99a2c351f515
- SHA1
  
  0f2e0bd6122a02438668004a0022eb54b7d40b31
- SHA256
  
  f6704719b6b975d8e238d152d103537bf8c6acc47c98cab85f0d34b7649e2a14
- SHA512
  
  9bd109e36593eb91c0f8966e9a931f54f03ad43ae0b990a0790adc785012920213439af612134ac75b4727280598e99dfb4503994ca8032d17091e72c8fc1142
- SSDEEP
  
  768:/FvjWAz06r0h81GYP39r0uziePNPOFONsZBdv5QsPc8IgOkt4R:/d13Jrie1mFFBplPc8HOkCR
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence