a562ec385a88d986cc5b2bcf4436b6b338f05e2945267ac47a7f19c0a7c1fd2a | Triage

Sharing

General

Target

f4437846c813f516d61e9e6b11f51ccf_JaffaCakes118
Size

364KB
Sample

240416-y9crfsbh49
MD5

f4437846c813f516d61e9e6b11f51ccf
SHA1

dc3ee517da83258c6ea6762e700304bdb4d80732
SHA256

a562ec385a88d986cc5b2bcf4436b6b338f05e2945267ac47a7f19c0a7c1fd2a
SHA512

ed2d9b58c47bae6f6373e660d2c6b90301ceda88b551c8ff882ffebcc8fa79df1873e264d6700dfbcd09ba93d3ef476400fbb4baf9a2712d80e540a8edeacad6
SSDEEP

6144:S9t/G4OXBICA5J+1HfabCAB5n25iV27mPAntKyBFhx8K7zHJFHm0qcWR/TCeI0WU:S9t+lcj+1/abvq5K5AtKcFhGozpFHXFE

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  f4437846c813f516d61e9e6b11f51ccf_JaffaCakes118
- Size
  
  364KB
- MD5
  
  f4437846c813f516d61e9e6b11f51ccf
- SHA1
  
  dc3ee517da83258c6ea6762e700304bdb4d80732
- SHA256
  
  a562ec385a88d986cc5b2bcf4436b6b338f05e2945267ac47a7f19c0a7c1fd2a
- SHA512
  
  ed2d9b58c47bae6f6373e660d2c6b90301ceda88b551c8ff882ffebcc8fa79df1873e264d6700dfbcd09ba93d3ef476400fbb4baf9a2712d80e540a8edeacad6
- SSDEEP
  
  6144:S9t/G4OXBICA5J+1HfabCAB5n25iV27mPAntKyBFhx8K7zHJFHm0qcWR/TCeI0WU:S9t+lcj+1/abvq5K5AtKcFhGozpFHXFE
Score

10^/10

evasion trojan
- Windows security bypass
  evasion trojan
- Disables taskbar notifications via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Windows security modification
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2