6bc1e7bff3a6f9777a0e555a3c449c3869c8ada35a81740e340776e48ac4bcf0 | Triage

Sharing

General

Target

19f241aa20f9847cae3c8d76ce958323_JaffaCakes118
Size

1.1MB
Sample

240628-nkv7dszcnm
MD5

19f241aa20f9847cae3c8d76ce958323
SHA1

53b7e40e881f3b15cb032f1edb0ade209d835977
SHA256

6bc1e7bff3a6f9777a0e555a3c449c3869c8ada35a81740e340776e48ac4bcf0
SHA512

f88975ef3836bfcf9b003ff31ab585ab1ff686385af23f1e7352ed58c477480f8fa1c9e2ea0e29e8ed9badaba899c49b4c4bb5ea6ae3a0eef5291f1736f60d06
SSDEEP

24576:SMpZ4OxwR1QcQq/W7ihb4bPWmBLXvPmVpTrdzjs00P:SuNZ7Ib8ZBL2/X0

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  19f241aa20f9847cae3c8d76ce958323_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  19f241aa20f9847cae3c8d76ce958323
- SHA1
  
  53b7e40e881f3b15cb032f1edb0ade209d835977
- SHA256
  
  6bc1e7bff3a6f9777a0e555a3c449c3869c8ada35a81740e340776e48ac4bcf0
- SHA512
  
  f88975ef3836bfcf9b003ff31ab585ab1ff686385af23f1e7352ed58c477480f8fa1c9e2ea0e29e8ed9badaba899c49b4c4bb5ea6ae3a0eef5291f1736f60d06
- SSDEEP
  
  24576:SMpZ4OxwR1QcQq/W7ihb4bPWmBLXvPmVpTrdzjs00P:SuNZ7Ib8ZBL2/X0
Score

8^/10

persistence
- Server Software Component: Terminal Services DLL
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Server Software Component

Terminal Services DLL

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2