8ce06073f1a7d87cf719e30546e85a0184674fe9ce70104f3b31ddb46f833246 | Triage

Sharing

General

Target

78c1165d30fe8d8f17a775901de5c64e_JaffaCakes118
Size

822KB
Sample

240527-lxw84sgf59
MD5

78c1165d30fe8d8f17a775901de5c64e
SHA1

a41e2503bd03567725edbad2b3ecb368338daa71
SHA256

8ce06073f1a7d87cf719e30546e85a0184674fe9ce70104f3b31ddb46f833246
SHA512

27979fee7f6fddcddfddd67e6534f5aa46f16ef22d84e54e23b0fc23bea6cb040910e5f0f6da2191046d39c94f418fb5542db97dfde535c6bc4dacf2c5490f0f
SSDEEP

12288:NiGoqGyBKPwNqsTA30nG2xvCgU34CSIaTi2ISz0BiUEtbvDgQxN9KVG41ddUeXbB:NiG5Gi4an9EodUwhUEtPgPgEddU0l

Score

7^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  78c1165d30fe8d8f17a775901de5c64e_JaffaCakes118
- Size
  
  822KB
- MD5
  
  78c1165d30fe8d8f17a775901de5c64e
- SHA1
  
  a41e2503bd03567725edbad2b3ecb368338daa71
- SHA256
  
  8ce06073f1a7d87cf719e30546e85a0184674fe9ce70104f3b31ddb46f833246
- SHA512
  
  27979fee7f6fddcddfddd67e6534f5aa46f16ef22d84e54e23b0fc23bea6cb040910e5f0f6da2191046d39c94f418fb5542db97dfde535c6bc4dacf2c5490f0f
- SSDEEP
  
  12288:NiGoqGyBKPwNqsTA30nG2xvCgU34CSIaTi2ISz0BiUEtbvDgQxN9KVG41ddUeXbB:NiG5Gi4an9EodUwhUEtPgPgEddU0l
Score

7^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

evasionpersistencetrojan