c183792f0adffdd553aa10015b8453abfb590fddd6791cabdfedb0984e156721 | Triage

Sharing

General

Target

eaa53746b91d3f62dda2bf46a5b6c3da_JaffaCakes118
Size

700KB
Sample

240410-kalcnahc98
MD5

eaa53746b91d3f62dda2bf46a5b6c3da
SHA1

9e43dce509b4a9d0bc6885539e78a33d2780f4ab
SHA256

c183792f0adffdd553aa10015b8453abfb590fddd6791cabdfedb0984e156721
SHA512

a3e9f0fc5186aa7fcbde8baabfd4284704c58913fae13d8332b95d00f77cb1b88aa63f09b1905f0fc0598e2a08733d91330b67aa9c6240dd27da9749c96367cb
SSDEEP

12288:ibo7YNQ1BeW8/LViyIakQz15bbPR3o9+FRFtgQb0lvPEb2yR7fCwohShx1:ikwQIiyIakELJ44JWTPDyR7fP

Score

6^/10

evasion trojan

Malware Config

Targets

- Target
  
  eaa53746b91d3f62dda2bf46a5b6c3da_JaffaCakes118
- Size
  
  700KB
- MD5
  
  eaa53746b91d3f62dda2bf46a5b6c3da
- SHA1
  
  9e43dce509b4a9d0bc6885539e78a33d2780f4ab
- SHA256
  
  c183792f0adffdd553aa10015b8453abfb590fddd6791cabdfedb0984e156721
- SHA512
  
  a3e9f0fc5186aa7fcbde8baabfd4284704c58913fae13d8332b95d00f77cb1b88aa63f09b1905f0fc0598e2a08733d91330b67aa9c6240dd27da9749c96367cb
- SSDEEP
  
  12288:ibo7YNQ1BeW8/LViyIakQz15bbPR3o9+FRFtgQb0lvPEb2yR7fCwohShx1:ikwQIiyIakELJ44JWTPDyR7fP
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2