ece67d1d2cc587231569492f70ef6add7b2fe99885d841e89c2ea27b91f28afb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

32f804876068904936fd0dda8bc97eac_JaffaCakes118
Size

400KB
Sample

240710-cw6lqatbjb
MD5

32f804876068904936fd0dda8bc97eac
SHA1

5e53ef306b864401006e61109e578fc092f02a6e
SHA256

ece67d1d2cc587231569492f70ef6add7b2fe99885d841e89c2ea27b91f28afb
SHA512

72e8996508fa5f6c57d73e3fed3d00bc6fb3de8e275dfbedd83c276906b733a2aa81742c879ff99d61c69128913237770266a4cc132f80efc7b8fabdde5b483c
SSDEEP

6144:A+tHUTQKK5jM78yMWgzCEf+IpJLxma/SOoY5sZjRB5T6ssS6WfR5mKC5ldshvN:BOTQKI+MWgzCEGIvLjq6sZtL+4fLkde

Score

10^/10

evasion persistence trojan

Malware Config

Targets

- Target
  
  32f804876068904936fd0dda8bc97eac_JaffaCakes118
- Size
  
  400KB
- MD5
  
  32f804876068904936fd0dda8bc97eac
- SHA1
  
  5e53ef306b864401006e61109e578fc092f02a6e
- SHA256
  
  ece67d1d2cc587231569492f70ef6add7b2fe99885d841e89c2ea27b91f28afb
- SHA512
  
  72e8996508fa5f6c57d73e3fed3d00bc6fb3de8e275dfbedd83c276906b733a2aa81742c879ff99d61c69128913237770266a4cc132f80efc7b8fabdde5b483c
- SSDEEP
  
  6144:A+tHUTQKK5jM78yMWgzCEf+IpJLxma/SOoY5sZjRB5T6ssS6WfR5mKC5ldshvN:BOTQKI+MWgzCEGIvLjq6sZtL+4fLkde
Score

10^/10

evasion persistence trojan
- UAC bypass
  evasion trojan
- Windows security bypass
  evasion trojan
- Disables taskbar notifications via registry modification
  evasion
- Windows security modification
  evasion trojan
- Adds Run key to start application
  persistence
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Abuse Elevation Control Mechanism

Bypass User Account Control

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Abuse Elevation Control Mechanism

Bypass User Account Control

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistencetrojan

behavioral2