c17572f318753dcec5825456fe75a6463a304b1e411b4c263d705f8a5f491723 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9408dc1999f7980fb0e889d65e92544d_JaffaCakes118
Size

515KB
Sample

240813-vzjv8s1fmk
MD5

9408dc1999f7980fb0e889d65e92544d
SHA1

6d16fc25b4ebef9ed8660e572cea9439d9d92515
SHA256

c17572f318753dcec5825456fe75a6463a304b1e411b4c263d705f8a5f491723
SHA512

628f861356bc95d51f8a83e7ce6576a2a2d6c427e0c5e6458209663e8b68021ce58ba824819db40bed1e49f68b6cdf15cf36fba84d4418b56c6480f3b345e4ed
SSDEEP

12288:CDe2pFt9uCD+9xvBtljk0PHfuLh0MkDP+LLS:CDe2ntH+9xrlI0B+K

Score

7^/10

discovery evasion trojan

Malware Config

Targets

- Target
  
  9408dc1999f7980fb0e889d65e92544d_JaffaCakes118
- Size
  
  515KB
- MD5
  
  9408dc1999f7980fb0e889d65e92544d
- SHA1
  
  6d16fc25b4ebef9ed8660e572cea9439d9d92515
- SHA256
  
  c17572f318753dcec5825456fe75a6463a304b1e411b4c263d705f8a5f491723
- SHA512
  
  628f861356bc95d51f8a83e7ce6576a2a2d6c427e0c5e6458209663e8b68021ce58ba824819db40bed1e49f68b6cdf15cf36fba84d4418b56c6480f3b345e4ed
- SSDEEP
  
  12288:CDe2pFt9uCD+9xvBtljk0PHfuLh0MkDP+LLS:CDe2ntH+9xrlI0B+K
Score

7^/10

discovery evasion trojan
- Executes dropped EXE
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojan

behavioral2

discoveryevasiontrojan