d55ae490597cd7f103cea4ae9ccf1e6f2bf96881daa37756711517ecd556b27f | Triage

Sharing

General

Target

0e0be8f0d8c6caf01699186c20c9ece8_JaffaCakes118
Size

299KB
Sample

240625-phnj7ssdnj
MD5

0e0be8f0d8c6caf01699186c20c9ece8
SHA1

04f14aeb077e51338c4b50f3cfd0a6941e1bcd10
SHA256

d55ae490597cd7f103cea4ae9ccf1e6f2bf96881daa37756711517ecd556b27f
SHA512

e8cf69713e6e18076be62b0a4f56667915d099d6ee2118478388ac4b109e226102d5436639bcf598da8eb1ee6e84e26ac99f421fdc9550d47223cae6867b4716
SSDEEP

6144:3/V7nDZULcHBs+gG6UI545uUmjAgsvOzkemeW4J73QALCsbibCL:3N7DZ5PgG85459WvCx+gALUbC

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  0e0be8f0d8c6caf01699186c20c9ece8_JaffaCakes118
- Size
  
  299KB
- MD5
  
  0e0be8f0d8c6caf01699186c20c9ece8
- SHA1
  
  04f14aeb077e51338c4b50f3cfd0a6941e1bcd10
- SHA256
  
  d55ae490597cd7f103cea4ae9ccf1e6f2bf96881daa37756711517ecd556b27f
- SHA512
  
  e8cf69713e6e18076be62b0a4f56667915d099d6ee2118478388ac4b109e226102d5436639bcf598da8eb1ee6e84e26ac99f421fdc9550d47223cae6867b4716
- SSDEEP
  
  6144:3/V7nDZULcHBs+gG6UI545uUmjAgsvOzkemeW4J73QALCsbibCL:3N7DZ5PgG85459WvCx+gALUbC
Score

8^/10

persistence
- Server Software Component: Terminal Services DLL
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Server Software Component

Terminal Services DLL

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2