5362094caa0c715081a44cb86a144400c088560573b87345cff4cd40cc4b0534 | Triage

Sharing

General

Target

1924d42b2104f97f86fe257326bc5248_JaffaCakes118
Size

1.1MB
Sample

240628-heaevaydlp
MD5

1924d42b2104f97f86fe257326bc5248
SHA1

72066754619adfa32ec9c7771120b4dea9c7d239
SHA256

5362094caa0c715081a44cb86a144400c088560573b87345cff4cd40cc4b0534
SHA512

855b87638bad6e704d8ce08ab47fe9b61d30ed857ccdc58753896f24f9c5ad9fe4f453bc1b01ea4bba8a40791f61e8b99efe04ec5fce32af73fefa3ab52d58e3
SSDEEP

24576:SMpZ4OxwR1QcQq/W7ihb4bPWmBLXvPmVpTrdzjs00a:SuNZ7Ib8ZBL2/Xp

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  1924d42b2104f97f86fe257326bc5248_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  1924d42b2104f97f86fe257326bc5248
- SHA1
  
  72066754619adfa32ec9c7771120b4dea9c7d239
- SHA256
  
  5362094caa0c715081a44cb86a144400c088560573b87345cff4cd40cc4b0534
- SHA512
  
  855b87638bad6e704d8ce08ab47fe9b61d30ed857ccdc58753896f24f9c5ad9fe4f453bc1b01ea4bba8a40791f61e8b99efe04ec5fce32af73fefa3ab52d58e3
- SSDEEP
  
  24576:SMpZ4OxwR1QcQq/W7ihb4bPWmBLXvPmVpTrdzjs00a:SuNZ7Ib8ZBL2/Xp
Score

8^/10

persistence
- Server Software Component: Terminal Services DLL
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Server Software Component

Terminal Services DLL

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2