cfda00663657c13e1da04667506778175de1066c66060ea12a2b2940f34969b2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1b80790ba8ed8a3e56f22faad624f93f_JaffaCakes118
Size

6.3MB
Sample

240701-qxmf5ayajn
MD5

1b80790ba8ed8a3e56f22faad624f93f
SHA1

a9bc2704af0baf4e57b66b9af7fed40209ccd42a
SHA256

cfda00663657c13e1da04667506778175de1066c66060ea12a2b2940f34969b2
SHA512

6fd3c536060023f7e5d45086b680671cdfbac0d581d3daecab4a9b4db3fa9a189bdf08739634f01c062dd3d843145529c46c35103ba07c2c751ba203d8784b5d
SSDEEP

98304:YGxXT8TEZnrM29spGcoGw6HBArfEu/ybqBnyRcANcr3leS6dl+fToo1ck1:NXT8TSr1spGco4HBEY8/eS6dl+Uo1D1

Score

7^/10

evasion trojan

Malware Config

Targets

- Target
  
  1b80790ba8ed8a3e56f22faad624f93f_JaffaCakes118
- Size
  
  6.3MB
- MD5
  
  1b80790ba8ed8a3e56f22faad624f93f
- SHA1
  
  a9bc2704af0baf4e57b66b9af7fed40209ccd42a
- SHA256
  
  cfda00663657c13e1da04667506778175de1066c66060ea12a2b2940f34969b2
- SHA512
  
  6fd3c536060023f7e5d45086b680671cdfbac0d581d3daecab4a9b4db3fa9a189bdf08739634f01c062dd3d843145529c46c35103ba07c2c751ba203d8784b5d
- SSDEEP
  
  98304:YGxXT8TEZnrM29spGcoGw6HBArfEu/ybqBnyRcANcr3leS6dl+fToo1ck1:NXT8TSr1spGco4HBEY8/eS6dl+Uo1D1
Score

7^/10

evasion trojan
- Executes dropped EXE
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2