478ffaef635f51eafbb5f6771bb316184ee9058c32d5cb67660509130f2d83ef | Triage

Sharing

General

Target

a735eeb9b01ba090fbbce7a104ac8d7c_JaffaCakes118
Size

838KB
Sample

240613-31d1dawfqf
MD5

a735eeb9b01ba090fbbce7a104ac8d7c
SHA1

84706e94f3a543b6590240366c086fe17658a867
SHA256

478ffaef635f51eafbb5f6771bb316184ee9058c32d5cb67660509130f2d83ef
SHA512

738ee79be035d2ab1ae5655274d7f0d2403c1e8d4a4e660dc19743183721e8d7eb63d413137481b2f16649dc77504ff60c76e480660670f388930ad5eba4540c
SSDEEP

12288:XliZNQsu1AoZvHR7hoBvGYWgvuXYqI1NDK5gVJlsodrJhsH8wy8ATHTaLKr0w:XkZUNx7aB+YWOufIK5OiSDscCA/Vr0w

Score

7^/10

discovery evasion persistence trojan

Malware Config

Targets

- Target
  
  a735eeb9b01ba090fbbce7a104ac8d7c_JaffaCakes118
- Size
  
  838KB
- MD5
  
  a735eeb9b01ba090fbbce7a104ac8d7c
- SHA1
  
  84706e94f3a543b6590240366c086fe17658a867
- SHA256
  
  478ffaef635f51eafbb5f6771bb316184ee9058c32d5cb67660509130f2d83ef
- SHA512
  
  738ee79be035d2ab1ae5655274d7f0d2403c1e8d4a4e660dc19743183721e8d7eb63d413137481b2f16649dc77504ff60c76e480660670f388930ad5eba4540c
- SSDEEP
  
  12288:XliZNQsu1AoZvHR7hoBvGYWgvuXYqI1NDK5gVJlsodrJhsH8wy8ATHTaLKr0w:XkZUNx7aB+YWOufIK5OiSDscCA/Vr0w
Score

7^/10

discovery evasion persistence trojan
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

discoveryevasionpersistencetrojan

behavioral2

evasionpersistencetrojan