a805c206e74cc6e8d130b597c657ddeb439668ec6f29b73c41595b858cc004f2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2d64b4312c7fcba5e5a1379cc33cc1f6_JaffaCakes118
Size

1.5MB
Sample

241009-jjhgpavfkm
MD5

2d64b4312c7fcba5e5a1379cc33cc1f6
SHA1

c67cfd6152851ba267fe076d4180d5796b810230
SHA256

a805c206e74cc6e8d130b597c657ddeb439668ec6f29b73c41595b858cc004f2
SHA512

34c593807d465301174060781a831686c2b49f30c09918a4b162b4dbcabac7375f21a103d45299678aed752198801e3e0d0149ff765ed0b5f05fbabdfb22a905
SSDEEP

49152:hDE2Wkpbeb9ecDhKQRTsEBVJ+EtDD2oaMXhZ+e:hDOaSRdhjJsYrtDD2QLT

Score

6^/10

discovery evasion trojan

Malware Config

Targets

- Target
  
  EWT.exe
- Size
  
  3.2MB
- MD5
  
  468ab8808d8aee637a3c279bec8030c3
- SHA1
  
  07278a4f812b9c71fdc28d96989b84d0d8d7fecc
- SHA256
  
  17ca3816504198953ad4e972ba68677c5e8b826d394c61988d640269e5df8191
- SHA512
  
  3a816f816b901704769f7caed30803472029e3361bfda84f7dc59b7267557991a6f97d0e3adc081700eedd0bbf654922de6eadd0cd9066f6ebe6d4b635d94cf3
- SSDEEP
  
  49152:Ki9MIf/dPeqvcYT1jSyv/81/Br2rlhqAH7+4iGT653E:Kk9lUDI+AHK4ij3
Score

6^/10

discovery evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojan

behavioral2

discoveryevasiontrojan