b31191b6bae69c832b642234e6675f0bca8edea810437cc11c2dd8c7be558c6b | Triage

Sharing

General

Target

03f493b5274630d01d7ba0492bad609b_JaffaCakes118
Size

810KB
Sample

240428-ajw6eabf83
MD5

03f493b5274630d01d7ba0492bad609b
SHA1

b7215708b8ea11c1608609140f22e691dc027eed
SHA256

b31191b6bae69c832b642234e6675f0bca8edea810437cc11c2dd8c7be558c6b
SHA512

19f8e1e8c019554b2a9fb003d31c846a51f5198f3951f65820dccbf18270bf158d33016dbbdf582da1aa7621980a0dee4324014156792a050227f3ce8bebda3e
SSDEEP

12288:Tt1IYbWCCdYSW+9bD5qQMgcqqLM3Q2zL5z03GqK4SiZMKkZtiTHPS58XAdCFDJ:TttSLH5qhgcg37f5+GqXSiIU2vCFDJ

Score

7^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  03f493b5274630d01d7ba0492bad609b_JaffaCakes118
- Size
  
  810KB
- MD5
  
  03f493b5274630d01d7ba0492bad609b
- SHA1
  
  b7215708b8ea11c1608609140f22e691dc027eed
- SHA256
  
  b31191b6bae69c832b642234e6675f0bca8edea810437cc11c2dd8c7be558c6b
- SHA512
  
  19f8e1e8c019554b2a9fb003d31c846a51f5198f3951f65820dccbf18270bf158d33016dbbdf582da1aa7621980a0dee4324014156792a050227f3ce8bebda3e
- SSDEEP
  
  12288:Tt1IYbWCCdYSW+9bD5qQMgcqqLM3Q2zL5z03GqK4SiZMKkZtiTHPS58XAdCFDJ:TttSLH5qhgcg37f5+GqXSiIU2vCFDJ
Score

7^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

evasionpersistencetrojan