5d896a3ce048910e3a8480e8b6e1c37d00b9c9694ad6058d243c289bc92f1a7e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bcb5812817523ceec63a1d38cb44b6d9_JaffaCakes118
Size

2.8MB
Sample

240823-w416ra1hjk
MD5

bcb5812817523ceec63a1d38cb44b6d9
SHA1

8b55af5efde2b364e4ebd34eb0da82fa32ea4c56
SHA256

5d896a3ce048910e3a8480e8b6e1c37d00b9c9694ad6058d243c289bc92f1a7e
SHA512

f6c17d1221816ba801d1d91fc1e40a614fce4868fb0a92fcc9e47b4ac15780a4f36c2d68dc6b8455350e046ded221e3d34596e7aa6d78fe0ce8ef0b5f67181fc
SSDEEP

49152:rMaVb3Z6qeMqlgX5zPW2aGD7Kc+HQInsXRauMGAimaUI:rLbJ6qeMqlgX5/17Kc+HQosXRaPG/

Score

7^/10

discovery evasion trojan

Malware Config

Targets

- Target
  
  bcb5812817523ceec63a1d38cb44b6d9_JaffaCakes118
- Size
  
  2.8MB
- MD5
  
  bcb5812817523ceec63a1d38cb44b6d9
- SHA1
  
  8b55af5efde2b364e4ebd34eb0da82fa32ea4c56
- SHA256
  
  5d896a3ce048910e3a8480e8b6e1c37d00b9c9694ad6058d243c289bc92f1a7e
- SHA512
  
  f6c17d1221816ba801d1d91fc1e40a614fce4868fb0a92fcc9e47b4ac15780a4f36c2d68dc6b8455350e046ded221e3d34596e7aa6d78fe0ce8ef0b5f67181fc
- SSDEEP
  
  49152:rMaVb3Z6qeMqlgX5zPW2aGD7Kc+HQInsXRauMGAimaUI:rLbJ6qeMqlgX5/17Kc+HQosXRaPG/
Score

7^/10

discovery evasion trojan
- Executes dropped EXE
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojan

behavioral2

discoveryevasiontrojan