27b351ea128a0a6ce2081c8a9bfcdec49c254313bc5a2bdd55c67c3d99a1de6f | Triage

Sharing

General

Target

0410f904f7a4bd46e6de9cc892bc9b92_JaffaCakes118
Size

833KB
Sample

240428-bq5a2adc2y
MD5

0410f904f7a4bd46e6de9cc892bc9b92
SHA1

2f969ef045eb2ba3b6dd3c396869a0f9890dfb22
SHA256

27b351ea128a0a6ce2081c8a9bfcdec49c254313bc5a2bdd55c67c3d99a1de6f
SHA512

c4b0a71ba46688f91de216083830a581c6241a7c41abc7a8a05c555a1f2f535dd3a4a85359b0dae0bd27eb60df4912a358e8925c4d63c7454761ebb5638ee96b
SSDEEP

12288:Xn1FmSR/3yS8IZ0RMz8k2lsWLgBARezYIzw2OzMuAv4NaWBgnG1BosQVk6e0MMT:Xnjm+T2jLuAYzBEpliWCnG71XAMMT

Score

7^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  0410f904f7a4bd46e6de9cc892bc9b92_JaffaCakes118
- Size
  
  833KB
- MD5
  
  0410f904f7a4bd46e6de9cc892bc9b92
- SHA1
  
  2f969ef045eb2ba3b6dd3c396869a0f9890dfb22
- SHA256
  
  27b351ea128a0a6ce2081c8a9bfcdec49c254313bc5a2bdd55c67c3d99a1de6f
- SHA512
  
  c4b0a71ba46688f91de216083830a581c6241a7c41abc7a8a05c555a1f2f535dd3a4a85359b0dae0bd27eb60df4912a358e8925c4d63c7454761ebb5638ee96b
- SSDEEP
  
  12288:Xn1FmSR/3yS8IZ0RMz8k2lsWLgBARezYIzw2OzMuAv4NaWBgnG1BosQVk6e0MMT:Xnjm+T2jLuAYzBEpliWCnG71XAMMT
Score

7^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

evasionpersistencetrojan