c7abf298ac8e0130bd631cda6a108db7467d960ced6423be7301db7ffde2fcee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c861c7a76184d94e01a2b95f541ef99c_JaffaCakes118
Size

891KB
Sample

240829-hjc2jazgpp
MD5

c861c7a76184d94e01a2b95f541ef99c
SHA1

3cb2de93635bc4c282386666f23dd9453a6fc612
SHA256

c7abf298ac8e0130bd631cda6a108db7467d960ced6423be7301db7ffde2fcee
SHA512

fa6a1876729230d166f3f7cce7953a5a3b1b7529e0d0b8797727b23f778050d6fa2dfeee15235acee54b9bc052a91acc0d11cb163dd047593d23551531cf4e0d
SSDEEP

24576:JZK1F6U9n15gTPw8R+Kv9TVPBjQXONqB4mmP8:JZYFH9ITPw8P/8XONT8

Score

6^/10

discovery evasion trojan

Malware Config

Targets

- Target
  
  c861c7a76184d94e01a2b95f541ef99c_JaffaCakes118
- Size
  
  891KB
- MD5
  
  c861c7a76184d94e01a2b95f541ef99c
- SHA1
  
  3cb2de93635bc4c282386666f23dd9453a6fc612
- SHA256
  
  c7abf298ac8e0130bd631cda6a108db7467d960ced6423be7301db7ffde2fcee
- SHA512
  
  fa6a1876729230d166f3f7cce7953a5a3b1b7529e0d0b8797727b23f778050d6fa2dfeee15235acee54b9bc052a91acc0d11cb163dd047593d23551531cf4e0d
- SSDEEP
  
  24576:JZK1F6U9n15gTPw8R+Kv9TVPBjQXONqB4mmP8:JZYFH9ITPw8P/8XONT8
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  12KB
- MD5
  
  1d5c649dde35003a618b9679d5d71b92
- SHA1
  
  0409bbab3ab34f8c01289cdd847b4d1a32d05b18
- SHA256
  
  0f4d3cee24e3f310fa804983c931d3628613988a24f0be7854f63a9309b8e45f
- SHA512
  
  b432ebcc52905662d61a3f17e08e209a3f9d836a9071b3b5e80070af7ebcf34cf66c44426dda041c2a258fda4787e5692e2b35acbcd73288fb84fe3c977bbfd9
- SSDEEP
  
  384:pKlm7i+c3QW6ckPhyDEaLnA2bbBBIXwZ:8qi8BcyhEhLBbbTI
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $STARTMENU/ɫӰ.url
- Size
  
  185B
- MD5
  
  521eb5f919a99e7803dee244bd68b0ee
- SHA1
  
  b547e4db313256c947ffa3517b121e604c9dccbf
- SHA256
  
  60227c85fa16fd46e9eb2431916420778b71e2d10a9d81134fe0282c9f536e11
- SHA512
  
  ee7cdb3091f3c4cdb08e48aa7a7b37619fe53825f89753938700fcd1889c58d97889e82e33484b12ce09abef6f0cb9a04c1d4a570c11850a7a0a498bea604cba
Score

1^/10
behavioral5 behavioral6
- Target
  
  Update.exe
- Size
  
  841KB
- MD5
  
  aa9d81078c01e2b9c71a50ba58fbecf0
- SHA1
  
  a6f716761798ad98bd28c72fb13fd4354ed88f37
- SHA256
  
  e3e21801ec11292d43e73791bcbf8d9cd9742461e3d80fea12dbef1986f939f8
- SHA512
  
  6fc726a0205c58dcae3c976816d6a20982e3aabad85c5b948f210f2cf35c2a34f4ad7ca490c58bc0227cc67edc19cf10cdba3cacc38fc3fcc80797510027d733
- SSDEEP
  
  12288:Fq/dhrLoYez0PwwArGBMaKd+E0b/knWSYjBMUlt6e+TCvdiFrQ:FEvYv0IwArGScE0bocFMSt6pTCvdi
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  jghdtv.exe
- Size
  
  860KB
- MD5
  
  a5ba0ae35f8335b12988c78cf3fab0e1
- SHA1
  
  9a01ae76d4cfd9761a87e7dc198c57174462dc26
- SHA256
  
  100d08baa7724893ff87d2ba16c885a263c27a8e11d6743edec1f414962e4893
- SHA512
  
  aac0e46195ce5919307f9ac104a27091e5391aa0c1c06b9354520b2865b5352abfccf41a8322d2eeea00447224a61694066e745735acb156b70b2e104e19ce89
- SSDEEP
  
  24576:LY6Rig/Kl6eOPlq5Colc872EfDwEJOqYrP:Vz/15qECFD0
Score

6^/10

discovery evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral10 behavioral9
- Target
  
  _JGHDTV.com.url
- Size
  
  182B
- MD5
  
  1e9a8ddaba57f5db5a40fb96e88f5014
- SHA1
  
  b8f3ba57468bf42992889610f4a35cae69fcf7e1
- SHA256
  
  377e66ad7f723252be8f09e1e22f54fb1e4114a058a239bf233b0fb87d7f2eeb
- SHA512
  
  d4ea71b467f1fba82efb95d09a2a61842ce1f992f6cb895aa0e7bbfef10a2dc141d80008fa0f28f0e40f42c32575ae97c8e487d158ba606143bb4096cd5d41c5
Score

1^/10
behavioral11 behavioral12
- Target
  
  ɫӰ.url
- Size
  
  185B
- MD5
  
  521eb5f919a99e7803dee244bd68b0ee
- SHA1
  
  b547e4db313256c947ffa3517b121e604c9dccbf
- SHA256
  
  60227c85fa16fd46e9eb2431916420778b71e2d10a9d81134fe0282c9f536e11
- SHA512
  
  ee7cdb3091f3c4cdb08e48aa7a7b37619fe53825f89753938700fcd1889c58d97889e82e33484b12ce09abef6f0cb9a04c1d4a570c11850a7a0a498bea604cba
Score

1^/10
behavioral13 behavioral14

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

discoveryevasiontrojan

behavioral10

discoveryevasiontrojan

behavioral11

behavioral12

behavioral13

behavioral14