Overview

overview

10

Static

static

10

ae13d167e2...18.exe

windows7-x64

6

ae13d167e2...18.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ae13d167e2196649e9ff88978af8f9fa_JaffaCakes118

  • Size

    69KB

  • Sample

    240615-mx1f7sxfrf

  • MD5

    ae13d167e2196649e9ff88978af8f9fa

  • SHA1

    51489d13a5a74546b004aa61f475b03400742568

  • SHA256

    df4ffee44b35c5a88ab24034172d64aa0c20a91014f48172b394f96dd98e1a20

  • SHA512

    f41b4186d99e113f2934da0756927d9c201698d6148d6ec28191dd450750aa75746ecdd205fa47672fb9405a6909827d762c5f70ee5277bc1dcf05a5e52c5536

  • SSDEEP

    1536:NZZZZZZZZZZZZpXzzzzzzzzzzzzV9rXounV98hbHnAwfMqqU+2bbbAV2/S2Lkvd9:xBounVyFHpfMqqDL2/Lkvd

Score
10/10
gandcrabpersistence

Malware Config

Targets

    • Target

      ae13d167e2196649e9ff88978af8f9fa_JaffaCakes118

    • Size

      69KB

    • MD5

      ae13d167e2196649e9ff88978af8f9fa

    • SHA1

      51489d13a5a74546b004aa61f475b03400742568

    • SHA256

      df4ffee44b35c5a88ab24034172d64aa0c20a91014f48172b394f96dd98e1a20

    • SHA512

      f41b4186d99e113f2934da0756927d9c201698d6148d6ec28191dd450750aa75746ecdd205fa47672fb9405a6909827d762c5f70ee5277bc1dcf05a5e52c5536

    • SSDEEP

      1536:NZZZZZZZZZZZZpXzzzzzzzzzzzzV9rXounV98hbHnAwfMqqU+2bbbAV2/S2Lkvd9:xBounVyFHpfMqqDL2/Lkvd

    Score
    6/10
    persistence

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks