General

  • Target

    bcc6ed93a81869c76c5f578ca0357afd_JaffaCakes118

  • Size

    250KB

  • Sample

    240618-tep13szglg

  • MD5

    bcc6ed93a81869c76c5f578ca0357afd

  • SHA1

    7a7cc8c65f9b01266d3e3042cedc49f56cd6d236

  • SHA256

    3053625c1efed8852cfb923554ee033419d01faaca04e40f27256b5f948fa017

  • SHA512

    9e0a9557f5583294c908c1a5f0adc8cb560fbcf83e7e0dff1dccf02967b9583028bdc167d1e55241e4efd9406dc9f72efe4259227a5f1d5e567a419bfc5e0a25

  • SSDEEP

    6144:+r72S8iPKc/27KjT/ZwnNBTVOTBBUy3wqqwkMsz5:w72+Kc/XjT6jGAqq15

Malware Config

Targets

    • Target

      bcc6ed93a81869c76c5f578ca0357afd_JaffaCakes118

    • Size

      250KB

    • MD5

      bcc6ed93a81869c76c5f578ca0357afd

    • SHA1

      7a7cc8c65f9b01266d3e3042cedc49f56cd6d236

    • SHA256

      3053625c1efed8852cfb923554ee033419d01faaca04e40f27256b5f948fa017

    • SHA512

      9e0a9557f5583294c908c1a5f0adc8cb560fbcf83e7e0dff1dccf02967b9583028bdc167d1e55241e4efd9406dc9f72efe4259227a5f1d5e567a419bfc5e0a25

    • SSDEEP

      6144:+r72S8iPKc/27KjT/ZwnNBTVOTBBUy3wqqwkMsz5:w72+Kc/XjT6jGAqq15

    • Event Triggered Execution: Component Object Model Hijacking

      Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.

MITRE ATT&CK Matrix ATT&CK v13

Persistence

Event Triggered Execution

1
T1546

Component Object Model Hijacking

1
T1546.015

Privilege Escalation

Event Triggered Execution

1
T1546

Component Object Model Hijacking

1
T1546.015

Tasks