d4ef55802eab701229fb0eb7c5b35fabc08d447a33fff7b2d4b64222cb228bce | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3b7d8087de19a7cd6c883edacc072877_JaffaCakes118
Size

237KB
Sample

240712-btwhasvglh
MD5

3b7d8087de19a7cd6c883edacc072877
SHA1

e4e0d974bbae7ccc31e69756a7fa09e1709c1ed1
SHA256

d4ef55802eab701229fb0eb7c5b35fabc08d447a33fff7b2d4b64222cb228bce
SHA512

68438bd900fb41f6da640c686c657ef1543d31e64c59ee6ece96aa61c603af590a1547f17f336de2646d57543b45c0abad938534e3fe64f08f6f113d4a28cd98
SSDEEP

6144:QYCRzXGSuzgDP33jhZGjvZvoFcq2PJvXBGylC:+Skz3j7G7ZQFWBv9C

Score

6^/10

evasion trojan

Malware Config

Targets

- Target
  
  Photo_Wall/Photo_Wall.exe
- Size
  
  239KB
- MD5
  
  7de8636bc10fc7274779ecaed82df97e
- SHA1
  
  bdab9586c5875b6c5f03923c060c3c27704624ee
- SHA256
  
  813cf71a89ee2553bebd0ea10465512090795bd075904d09b947a628f783249e
- SHA512
  
  ea3d2a08c29e9ee4b0a82e44a24604aed0b7bc607c6829931007eab05f627aee77f8ae5cfcf8ed58c550d575b2ddc6a7c89f0aaab065bf82407b8eafa8578b8c
- SSDEEP
  
  6144:KCCGSuzQDL33jhZGhvZvkFc62PJvXBxsfb:KC/Mn3j7GRZcFgBvG
Score

1^/10
behavioral1 behavioral2
- Target
  
  Photo_Wall/www.delphisources.ru.url
- Size
  
  54B
- MD5
  
  62303ec0da2d2ba282bad0eca1137c80
- SHA1
  
  e0390e0ebb4c98db3b5217734f9222806f35043a
- SHA256
  
  54f2ee8e64cd51d92b931960f9395e0f4930b60658c60d8f269a36a1ed4a556f
- SHA512
  
  640b7d54c324112f3bae1bf3e2772938dd739cb2613476c51c9da6a0705e3c4fcffb9479b3cc8460197b4582ece7cb3afd815fbcbe25d5505f5de559c7dcbfb9
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4