24e70ce017648cacb84de6fa8e0d5783121c3e89dd19a738bd8cececd4d5a63d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6025355f33637ae005a79f8e99be548b_JaffaCakes118
Size

468KB
Sample

240720-mprjbsybjq
MD5

6025355f33637ae005a79f8e99be548b
SHA1

32bcd92caa9a1a143d57657f5d0252c9d3b32443
SHA256

24e70ce017648cacb84de6fa8e0d5783121c3e89dd19a738bd8cececd4d5a63d
SHA512

760a369ed0d9fc82ba93858689d2bd2c9e4272c592619f46ff54ae1a41b82206b05106fddbc0931ac2f9593afd096bcd1425db3eb5286f30a83dd37d3ba975df
SSDEEP

6144:VuKH+1dcVTGqecCKRd73ZeAIQ1IRTsQu1w1C8ilOgvjYBjW4U25GfLL9FXgk12Wy:VV+hrcCKf3ZywIhsQfildjYo4U2MgX4

Score

10^/10

evasion persistence trojan

Malware Config

Targets

- Target
  
  6025355f33637ae005a79f8e99be548b_JaffaCakes118
- Size
  
  468KB
- MD5
  
  6025355f33637ae005a79f8e99be548b
- SHA1
  
  32bcd92caa9a1a143d57657f5d0252c9d3b32443
- SHA256
  
  24e70ce017648cacb84de6fa8e0d5783121c3e89dd19a738bd8cececd4d5a63d
- SHA512
  
  760a369ed0d9fc82ba93858689d2bd2c9e4272c592619f46ff54ae1a41b82206b05106fddbc0931ac2f9593afd096bcd1425db3eb5286f30a83dd37d3ba975df
- SSDEEP
  
  6144:VuKH+1dcVTGqecCKRd73ZeAIQ1IRTsQu1w1C8ilOgvjYBjW4U25GfLL9FXgk12Wy:VV+hrcCKf3ZywIhsQfildjYo4U2MgX4
Score

10^/10

evasion persistence trojan
- Windows security bypass
  evasion trojan
- Disables taskbar notifications via registry modification
  evasion
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Windows security modification
  evasion trojan
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistencetrojan

behavioral2