d888dfeaa5eed4ffd2dcca4d4ff1914d3f3823c93ef889e115574ed3637a74e9 | Triage

Sharing

General

Target

17a4037ca50b72cef1862fbe8fa9a2ab_JaffaCakes118
Size

1.1MB
Sample

240627-1lcsnasepb
MD5

17a4037ca50b72cef1862fbe8fa9a2ab
SHA1

75306402c50c451ac5ed2fe64b9fea8db41c1736
SHA256

d888dfeaa5eed4ffd2dcca4d4ff1914d3f3823c93ef889e115574ed3637a74e9
SHA512

6ae07e0201496a98237aaad9ddd5904063b00386dd1f23218b0e3097b2d4f9e7093ed3db33ef5f6e23d6698282a048675218ed378b7e578375e8eeb752185a4e
SSDEEP

24576:SMpZ4OxwR1QcQq/W7ihb4bPWmBLXvPmVpTrdzjs00s:SuNZ7Ib8ZBL2/XT

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  17a4037ca50b72cef1862fbe8fa9a2ab_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  17a4037ca50b72cef1862fbe8fa9a2ab
- SHA1
  
  75306402c50c451ac5ed2fe64b9fea8db41c1736
- SHA256
  
  d888dfeaa5eed4ffd2dcca4d4ff1914d3f3823c93ef889e115574ed3637a74e9
- SHA512
  
  6ae07e0201496a98237aaad9ddd5904063b00386dd1f23218b0e3097b2d4f9e7093ed3db33ef5f6e23d6698282a048675218ed378b7e578375e8eeb752185a4e
- SSDEEP
  
  24576:SMpZ4OxwR1QcQq/W7ihb4bPWmBLXvPmVpTrdzjs00s:SuNZ7Ib8ZBL2/XT
Score

8^/10

persistence
- Server Software Component: Terminal Services DLL
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Server Software Component

Terminal Services DLL

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2