2ed69762a6bc2ac0c7a5ee6cf06f8e685843a09d12d8392bdec12cf6341ba3fc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fcb9a254c6740f8cef5275fb9ac250bb_JaffaCakes118
Size

852KB
Sample

240928-t944gsydlc
MD5

fcb9a254c6740f8cef5275fb9ac250bb
SHA1

0c8c6359bc6f651699364b7280c7bac8ddee6c5b
SHA256

2ed69762a6bc2ac0c7a5ee6cf06f8e685843a09d12d8392bdec12cf6341ba3fc
SHA512

aa83ed3ff77e1724b006681e9c6c4a306aae50eec9d8363c1371c8b7fd58a763c36553a238d4154fd1ea081bc5bee7ca1129b730ad0e3ec4d7ea8dcb05f92aee
SSDEEP

24576:fJVL03ZEy2BHteSI01lO7QtoDUB9fnjys/Fd1bvE6e2ocO:fJl03Z+Hl2QtoY7jys/bR3emO

Score

7^/10

discovery evasion persistence privilege_escalation trojan

Malware Config

Targets

- Target
  
  fcb9a254c6740f8cef5275fb9ac250bb_JaffaCakes118
- Size
  
  852KB
- MD5
  
  fcb9a254c6740f8cef5275fb9ac250bb
- SHA1
  
  0c8c6359bc6f651699364b7280c7bac8ddee6c5b
- SHA256
  
  2ed69762a6bc2ac0c7a5ee6cf06f8e685843a09d12d8392bdec12cf6341ba3fc
- SHA512
  
  aa83ed3ff77e1724b006681e9c6c4a306aae50eec9d8363c1371c8b7fd58a763c36553a238d4154fd1ea081bc5bee7ca1129b730ad0e3ec4d7ea8dcb05f92aee
- SSDEEP
  
  24576:fJVL03ZEy2BHteSI01lO7QtoDUB9fnjys/Fd1bvE6e2ocO:fJl03Z+Hl2QtoY7jys/bR3emO
Score

7^/10

discovery evasion persistence privilege_escalation trojan
- Event Triggered Execution: Component Object Model Hijacking
  Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
  persistence privilege_escalation
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Component Object Model Hijacking

Privilege Escalation

Event Triggered Execution

Component Object Model Hijacking

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistenceprivilege_escalationtrojan

behavioral2

discoveryevasionpersistenceprivilege_escalationtrojan