Overview

overview

8

Static

static

3

0a8f20ca50...18.exe

windows7-x64

0a8f20ca50...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    0a8f20ca5080af61578afada80edf02a_JaffaCakes118

  • Size

    100KB

  • Sample

    240624-ypvfrszgpc

  • MD5

    0a8f20ca5080af61578afada80edf02a

  • SHA1

    711289ff7ffae21dc419c493d9a3433640bc25ff

  • SHA256

    cb912bfb972d61050ac05d5e1fcb26771fe7a21a72affbbda4a12d9fcd728577

  • SHA512

    ece71fd2a26c8831436a28c7f0643fa073f69b66205ca47a63261827fc7ccf488dfc8bd30c230358060d3732d58e7fec57e049ad391a66babf779f4d7b7dbc62

  • SSDEEP

    1536:zLnWL5LflQHyJngLVobPkUAe1jYd8ojDhH1MyDXLHoXSSSeSSS+y:zL0fOTCsUdYdFt17rLHof

Score
8/10
persistenceprivilege_escalation

Malware Config

Targets

    • Target

      0a8f20ca5080af61578afada80edf02a_JaffaCakes118

    • Size

      100KB

    • MD5

      0a8f20ca5080af61578afada80edf02a

    • SHA1

      711289ff7ffae21dc419c493d9a3433640bc25ff

    • SHA256

      cb912bfb972d61050ac05d5e1fcb26771fe7a21a72affbbda4a12d9fcd728577

    • SHA512

      ece71fd2a26c8831436a28c7f0643fa073f69b66205ca47a63261827fc7ccf488dfc8bd30c230358060d3732d58e7fec57e049ad391a66babf779f4d7b7dbc62

    • SSDEEP

      1536:zLnWL5LflQHyJngLVobPkUAe1jYd8ojDhH1MyDXLHoXSSSeSSS+y:zL0fOTCsUdYdFt17rLHof

    Score
    8/10
    persistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks