40e7f791f98350d1b0dbd72768ea0deb9a34273bbe11f4e7e3180831ad5974ce | Triage

Sharing

Copy URL Twitter E-mail

General

Target

29a4abdd5f6668d987bcf8242d0f6f86_JaffaCakes118
Size

239KB
Sample

241009-dh6v1axgqr
MD5

29a4abdd5f6668d987bcf8242d0f6f86
SHA1

a8c2b199b87660637e77145a5c40ad70c4ecebac
SHA256

40e7f791f98350d1b0dbd72768ea0deb9a34273bbe11f4e7e3180831ad5974ce
SHA512

3a36464af769d88c65dbc61796da1c24d57b5c4a86b7ce7451c300f2916c525f1fa4922156276bdc1316ef618bae3961cffabfa2543cfd39a4725bbdff171113
SSDEEP

6144:eiqsPlpdl+X0a7vJtMygUcfvN1iGtksW++eRSrRO4ygU:r3Nt/a7vJtvPcfLiGxWneRUFU

Score

6^/10

discovery evasion trojan

Malware Config

Targets

- Target
  
  Black Admin/Black Admin.exe
- Size
  
  539KB
- MD5
  
  db94d9d8d36ef6ae0e50b85035cbe9ca
- SHA1
  
  0ef83fdc326f4d8ebc6d55fde08fe1ff41337c95
- SHA256
  
  fd580dbfee1ceecef41a61cf1e2c65ce450567b84c5a9e128392fef96c87412f
- SHA512
  
  1207b26827a1dbb6cd1ce46ebdacd994806eda1110d41a6451805e6414c8b0c84d6a4af498e5da940ee424364adeacc3b00a691e7ac0ab8497d2c4733db63bb6
- SSDEEP
  
  6144:jzGQZ8cIr25e3tJkm4MfoaGXA+r7IftBDrwJYQDo8L7p2vdvzDxTa/oygDgGACRK:3fZ8cIroXXNrCPw7oC2vpnxTqMDgKzw
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  Black Admin/Keygen.exe
- Size
  
  6KB
- MD5
  
  d2b44b9140742962dfcb21f2a605ab84
- SHA1
  
  cc80980d1f69a9152b50e40a3b5142690d345298
- SHA256
  
  2f61697981ddbe94a8d59cc6fd54fddd42f9301744e7124997b7f941d4cf23bd
- SHA512
  
  812fc448ecd37a9a6ddafab8c4b8866eb83fb2c96b31ce045ca6d4d89f1ad44261d510dbc6b48b263e76b58b8cc755a2ecf7447771807086f63274ccb1f41489
- SSDEEP
  
  48:ycbzneKr/TUTwKuP4JSslN/BTnYS0OdkQzXlidqw2eO:ZbCKrrsbQkGqwE
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  For-Gamer.Ru.url
- Size
  
  46B
- MD5
  
  1da9645923297c8df1c4c9085f67b9dd
- SHA1
  
  e3d2093a9e93eea47d80f947a108d288cf1fd232
- SHA256
  
  d12bc7dd452885b319749bc2797ec38188d42c6a7071cd32b9f353a5ecf7b2a5
- SHA512
  
  3e7895251c0fe58b31271ed7a9d9ec6fff60cb834bf50cff2bc22da4fecc69d6e5f2f35ddddc309ad05ff0e9e8840a0781ed2a50440fc57cf31cbd4354b3960d
Score

6^/10

discovery evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

discoveryevasiontrojan

behavioral6