fe8e0b671b60b6f26685fea0c7a0d54470b216abe2a5d3e107b2911bb94070ba | Triage

Sharing

General

Target

cf84c8aede92faa9b7134ae63ac03a2a_JaffaCakes118
Size

789KB
Sample

240906-phjw1swfpd
MD5

cf84c8aede92faa9b7134ae63ac03a2a
SHA1

61f0b9f975063528a6621409584c5a05856914e0
SHA256

fe8e0b671b60b6f26685fea0c7a0d54470b216abe2a5d3e107b2911bb94070ba
SHA512

3a5f15fc422846f0e4dc48e68351c2aecb12507e250c0c8ac7c2baa79e2cc5d925b91a18d5a38e202a37acfed0e81d141cc7d7f91dc7924c5e5a8b75266c3abc
SSDEEP

24576:yL32XfDqmqkKS6cfNfNIN4jp3DZPtq/h:yL32vDqgKrujpzZ1q/h

Score

7^/10

discovery evasion trojan

Malware Config

Targets

- Target
  
  cf84c8aede92faa9b7134ae63ac03a2a_JaffaCakes118
- Size
  
  789KB
- MD5
  
  cf84c8aede92faa9b7134ae63ac03a2a
- SHA1
  
  61f0b9f975063528a6621409584c5a05856914e0
- SHA256
  
  fe8e0b671b60b6f26685fea0c7a0d54470b216abe2a5d3e107b2911bb94070ba
- SHA512
  
  3a5f15fc422846f0e4dc48e68351c2aecb12507e250c0c8ac7c2baa79e2cc5d925b91a18d5a38e202a37acfed0e81d141cc7d7f91dc7924c5e5a8b75266c3abc
- SSDEEP
  
  24576:yL32XfDqmqkKS6cfNfNIN4jp3DZPtq/h:yL32vDqgKrujpzZ1q/h
Score

7^/10

discovery evasion trojan
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojan

behavioral2

discoveryevasiontrojan