General

  • Target

    JaffaCakes118_13d3a1912118e510c13a00e196fd87e7

  • Size

    110KB

  • Sample

    250123-fd1vastrar

  • MD5

    13d3a1912118e510c13a00e196fd87e7

  • SHA1

    7e093ecd0053633ce7e07562608275596c8d9cc2

  • SHA256

    61c1fe32c497386b36593039056eb17dcdbf1478d2412b98a5481b45aeca7e03

  • SHA512

    c377fdacf4ae2dbc889af032ae54a2bf60f62c371f17dfb2d7b8fefcb0662fee483eb1afb930e9c911ff68e27068e2837e9fd007d30aee9f25ca78db0d6ed2d1

  • SSDEEP

    3072:EftNX080ZhFel+D3OtS/cpeLYl6HkBmzAdCvMZO7IV5bREMde8UTBPYS:I50itS/cpeLYl6HkBmzAdCvMZO7IVArf

Malware Config

Targets

    • Target

      JaffaCakes118_13d3a1912118e510c13a00e196fd87e7

    • Size

      110KB

    • MD5

      13d3a1912118e510c13a00e196fd87e7

    • SHA1

      7e093ecd0053633ce7e07562608275596c8d9cc2

    • SHA256

      61c1fe32c497386b36593039056eb17dcdbf1478d2412b98a5481b45aeca7e03

    • SHA512

      c377fdacf4ae2dbc889af032ae54a2bf60f62c371f17dfb2d7b8fefcb0662fee483eb1afb930e9c911ff68e27068e2837e9fd007d30aee9f25ca78db0d6ed2d1

    • SSDEEP

      3072:EftNX080ZhFel+D3OtS/cpeLYl6HkBmzAdCvMZO7IV5bREMde8UTBPYS:I50itS/cpeLYl6HkBmzAdCvMZO7IVArf

    Score
    6/10
    • Adds Run key to start application

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

MITRE ATT&CK Enterprise v15

Tasks