be5a169d4a405e93ee9b59e75704b594a3856a5289c0596fe80c45059d0f3b9c | Triage

Sharing

General

Target

04b3423959eba454be36293cad05e6fb_JaffaCakes118
Size

88KB
Sample

240428-jk2lysbb27
MD5

04b3423959eba454be36293cad05e6fb
SHA1

0437e4d6ca083c279483d65e36823382e2d9b9f5
SHA256

be5a169d4a405e93ee9b59e75704b594a3856a5289c0596fe80c45059d0f3b9c
SHA512

1cf42862457ba1caedabcf107e6b12d065f0d596d4a2beb918f4d6b92111da1ed8dbf402aba8ed8cd580321385971e7f329be3d2243e46e1106bd8f41fb18122
SSDEEP

1536:WN25HqKy75aXT1ZLDlWbZAyUH6CJTfhczBEmoHtFx2tnrhmi+rfzY0CkCR5:WUlGCri6aCJTfhczBEjHP6sTvMkCR5

Score

6^/10

evasion trojan

Malware Config

Targets

- Target
  
  documenty.exe
- Size
  
  158KB
- MD5
  
  2cb88704385ff41944db176054cff62e
- SHA1
  
  ccc3beb32c709206e290c61f7c36e77a94efe7b7
- SHA256
  
  33b40da6814e5225eeaa538aee73a9c77917ac24bdc1c8c57592d4dec337c755
- SHA512
  
  1ac621924b96bc3e478e92fba0e7e33ba31e301ca00c3e94274ddbc08d333226ea0bd5f1ea61369739a046bdd69ba69a2638e81efa2df04cdf23b8a14ca0fae4
- SSDEEP
  
  3072:bVtTrtfFxU1/jiknp5Xn2VkPvdDJHBQ17uNZl/7E8WMANwXa:bVtTrNFa+knpFn+kPThQ1ql/uwX
Score

6^/10

evasion trojan
- Checks for any installed AV software in registry
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

Security Software Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2