General

  • Target

    01a396b46a9f2dd4f7543e304c854a36_JaffaCakes118

  • Size

    125KB

  • Sample

    240622-mgakvatflg

  • MD5

    01a396b46a9f2dd4f7543e304c854a36

  • SHA1

    ede26c28ff12c2344a5b4c4daf25a92168759843

  • SHA256

    4b8bb58350588bf17a6c8bf0b59b4114dae7edb100cbdf0efffa536eae118b04

  • SHA512

    03dfbded702a48abe20f44f9d51fa0394502674169716960f566a60e5a12f531f5534456e66859795ea5e174a7b87bc8fff76f08fd7233820a2982a8c6545cb7

  • SSDEEP

    3072:gWWKtCnE/XqNC4mKRcvVbkusRq2E09Pv4T/y7Eo99ndtRo:glE/XqwuCGRNEmniondt

Malware Config

Targets

    • Target

      01a396b46a9f2dd4f7543e304c854a36_JaffaCakes118

    • Size

      125KB

    • MD5

      01a396b46a9f2dd4f7543e304c854a36

    • SHA1

      ede26c28ff12c2344a5b4c4daf25a92168759843

    • SHA256

      4b8bb58350588bf17a6c8bf0b59b4114dae7edb100cbdf0efffa536eae118b04

    • SHA512

      03dfbded702a48abe20f44f9d51fa0394502674169716960f566a60e5a12f531f5534456e66859795ea5e174a7b87bc8fff76f08fd7233820a2982a8c6545cb7

    • SSDEEP

      3072:gWWKtCnE/XqNC4mKRcvVbkusRq2E09Pv4T/y7Eo99ndtRo:glE/XqwuCGRNEmniondt

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

    • Loads dropped DLL

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks