Overview

overview

8

Static

static

3

1a499a4ae6...18.exe

windows7-x64

1a499a4ae6...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    1a499a4ae6af205115ea2a0cfadbc3b3_JaffaCakes118

  • Size

    104KB

  • Sample

    240628-qnvq5s1hlc

  • MD5

    1a499a4ae6af205115ea2a0cfadbc3b3

  • SHA1

    6ada698210dc2b96487bd5f1252414143be0b434

  • SHA256

    9632ca00d891762cc8c64736ba0a2bcc41a6c4292fba42007cd800d16159ac40

  • SHA512

    7f9ceac287bee5576e85602980877c453eb44ed494464a27a62a5cec5edc453b8a4e2261327e58b455f99b917128e904f1534e9a633d1c83bb67cc2c767b862b

  • SSDEEP

    1536:mBkZidRIYfXlbdEeDCsikaxh9F08u0mI47/GC8EqNlceu+nBgyoDPj6mQ:KBRxXl2QB89Ftu0mI473EuebBgyoD0

Score
8/10
persistenceprivilege_escalation

Malware Config

Targets

    • Target

      1a499a4ae6af205115ea2a0cfadbc3b3_JaffaCakes118

    • Size

      104KB

    • MD5

      1a499a4ae6af205115ea2a0cfadbc3b3

    • SHA1

      6ada698210dc2b96487bd5f1252414143be0b434

    • SHA256

      9632ca00d891762cc8c64736ba0a2bcc41a6c4292fba42007cd800d16159ac40

    • SHA512

      7f9ceac287bee5576e85602980877c453eb44ed494464a27a62a5cec5edc453b8a4e2261327e58b455f99b917128e904f1534e9a633d1c83bb67cc2c767b862b

    • SSDEEP

      1536:mBkZidRIYfXlbdEeDCsikaxh9F08u0mI47/GC8EqNlceu+nBgyoDPj6mQ:KBRxXl2QB89Ftu0mI473EuebBgyoD0

    Score
    8/10
    persistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks