92166af053c3856dbd811dea4522e471bfb695f845aac5a708e0b364844b1e6a | Triage

Sharing

General

Target

77c7985d2f986ee369cb51295c765b8f_JaffaCakes118
Size

823KB
Sample

240527-d4j85afg29
MD5

77c7985d2f986ee369cb51295c765b8f
SHA1

fa3f239677833d00ea24f723dcd3c03b5a0e34bf
SHA256

92166af053c3856dbd811dea4522e471bfb695f845aac5a708e0b364844b1e6a
SHA512

18670c456e2cc46582fb1cbd9840fa1f57f57c644b370e354e3c4edf2917533781ffd1f1623547146e1fad2e9c9d271b8331e2c78feb11fd4228470dd289d792
SSDEEP

24576:D1FVwH7G3zhPn/uQw+Wcgm9V5ssJS3yWz7Y:D1Mq3tiyr9V5ssA3yIs

Score

7^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  77c7985d2f986ee369cb51295c765b8f_JaffaCakes118
- Size
  
  823KB
- MD5
  
  77c7985d2f986ee369cb51295c765b8f
- SHA1
  
  fa3f239677833d00ea24f723dcd3c03b5a0e34bf
- SHA256
  
  92166af053c3856dbd811dea4522e471bfb695f845aac5a708e0b364844b1e6a
- SHA512
  
  18670c456e2cc46582fb1cbd9840fa1f57f57c644b370e354e3c4edf2917533781ffd1f1623547146e1fad2e9c9d271b8331e2c78feb11fd4228470dd289d792
- SSDEEP
  
  24576:D1FVwH7G3zhPn/uQw+Wcgm9V5ssJS3yWz7Y:D1Mq3tiyr9V5ssA3yIs
Score

7^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

evasionpersistencetrojan