9c875a95ac4ff8ccb425506cb5fafd1f31e71ab6ded0ef3580c4aa40779f219b | Triage

Sharing

General

Target

f27a8aa5614cf60f68ed775c1367618c_JaffaCakes118
Size

61KB
Sample

240416-cy9q6afc62
MD5

f27a8aa5614cf60f68ed775c1367618c
SHA1

adf56250d585f527fe54d897a3262d9326f17598
SHA256

9c875a95ac4ff8ccb425506cb5fafd1f31e71ab6ded0ef3580c4aa40779f219b
SHA512

e6367006df243d4a2135bd47393f19357cbb9fe73d977b65b1482f6a50ec62679fb824ff8a319c396e2030179fa079bff8ec04e744af7ead9cd294f34c3fc82c
SSDEEP

1536:qkkO48OEkRePdStfgbzoqwVWVkL/S/54Lvmjh0skCj+CjqSU:qkkOlkgigbBlu7TL+Eq+bV

Score

7^/10

evasion trojan

Malware Config

Targets

- Target
  
  keygen.exe
- Size
  
  63KB
- MD5
  
  26137f9d34520b2b8241627c6d84e1dc
- SHA1
  
  61a47a760cfa849fe1fcf10269445c5f2555610c
- SHA256
  
  4aa8724d5c32257359189223660ba586e50ef10cbfccb49a8ef672635a5c7807
- SHA512
  
  c5e27fc3accb868f3b7e6141e14a7427f0c2d1abeed671dca49967a7982ac1f6c983e56075fd254858062affc5829068bfe4dc0523621b35f2e3acbd8ed09bc5
- SSDEEP
  
  1536:KV5+DQ/jizwlrCQA1C90lCx9ZFBRBSRuqy7CnvIdlN:KVSuU4ABUb5qMCngdl
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  www.suryadewa.com.URL
- Size
  
  48B
- MD5
  
  afb7915119dd2d6a48ce42617fae4fe8
- SHA1
  
  ac23b932ee93e6516fd1b5f222a0e82531f84800
- SHA256
  
  79b922b26be1a04604b278ead6b1aeb98d50218419727c6e3e69dc0ad06fb16f
- SHA512
  
  a413fd4bef304f4b1cffe6a7ed55a4c613b8052112f3f4fd4a0e7ddbe95ecad5640699204e867b5904480a00dfb4af8dff1f866ac58eb0de44ff3df2514059ec
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4