d65d4e139df9c545dffc30e140a60cdce59af0e05a68deba1887abcd5fb8e8ce | Triage

Sharing

General

Target

5e24f784ead0aacf1a086123d366de4c_JaffaCakes118
Size

108KB
Sample

240719-3hz5wswbmp
MD5

5e24f784ead0aacf1a086123d366de4c
SHA1

a92fb961ce46c15870177a3b175fa849be0bf11c
SHA256

d65d4e139df9c545dffc30e140a60cdce59af0e05a68deba1887abcd5fb8e8ce
SHA512

34186500b29d06dad5465d633d201b6e540c4a1b0fd9a7ea163329f219be4c892b64c3a65d6e77fba5b64d9050ba29c57bd72f07a081c456b2b830aa644e2014
SSDEEP

768:w7rgnvQjX4KPcAmigvO2B/fJPSysbX2uraeVE65ITnOdqv/q7rgnvQjXMf1DYM8k:w7rA6XbBy8hVrISkv/q7rA6XM1OVf

Score

7^/10

evasion trojan

Malware Config

Targets

- Target
  
  5e24f784ead0aacf1a086123d366de4c_JaffaCakes118
- Size
  
  108KB
- MD5
  
  5e24f784ead0aacf1a086123d366de4c
- SHA1
  
  a92fb961ce46c15870177a3b175fa849be0bf11c
- SHA256
  
  d65d4e139df9c545dffc30e140a60cdce59af0e05a68deba1887abcd5fb8e8ce
- SHA512
  
  34186500b29d06dad5465d633d201b6e540c4a1b0fd9a7ea163329f219be4c892b64c3a65d6e77fba5b64d9050ba29c57bd72f07a081c456b2b830aa644e2014
- SSDEEP
  
  768:w7rgnvQjX4KPcAmigvO2B/fJPSysbX2uraeVE65ITnOdqv/q7rgnvQjXMf1DYM8k:w7rA6XbBy8hVrISkv/q7rA6XM1OVf
Score

7^/10

evasion trojan
- Executes dropped EXE
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2