Overview

overview

8

Static

static

3

2168e7d761...18.exe

windows7-x64

2168e7d761...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2168e7d761bdaad41a1a11169b303235_JaffaCakes118

  • Size

    88KB

  • Sample

    240703-hdmc1s1gje

  • MD5

    2168e7d761bdaad41a1a11169b303235

  • SHA1

    a95a5eb1f988fddb638587fd8cb769217887ccac

  • SHA256

    dfde63bec1768ba6269d457ae2226a101a5cd51f919b97a752796a6a38a354d3

  • SHA512

    4085d0fda49e263d1e266b1c2b29665ce5e086cc1804cddd60b57a0ef84d2b761b6229410807085b2b86d1c9a6bd1cbdf3d69006670753e63a34b8f6ba184e42

  • SSDEEP

    1536:X6cE+lcVvWCRHljEZ+9yDNSYSD2TOTwBPWvu6uk7EEEC7xZopSluTHT9KoTJlIU:XbEsccC5ljEs9+NSYhhW2Bk7BEC7oEk/

Score
8/10
persistenceprivilege_escalation

Malware Config

Targets

    • Target

      2168e7d761bdaad41a1a11169b303235_JaffaCakes118

    • Size

      88KB

    • MD5

      2168e7d761bdaad41a1a11169b303235

    • SHA1

      a95a5eb1f988fddb638587fd8cb769217887ccac

    • SHA256

      dfde63bec1768ba6269d457ae2226a101a5cd51f919b97a752796a6a38a354d3

    • SHA512

      4085d0fda49e263d1e266b1c2b29665ce5e086cc1804cddd60b57a0ef84d2b761b6229410807085b2b86d1c9a6bd1cbdf3d69006670753e63a34b8f6ba184e42

    • SSDEEP

      1536:X6cE+lcVvWCRHljEZ+9yDNSYSD2TOTwBPWvu6uk7EEEC7xZopSluTHT9KoTJlIU:XbEsccC5ljEs9+NSYhhW2Bk7BEC7oEk/

    Score
    8/10
    persistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks