Overview

overview

8

Static

static

3

219a368f63...18.exe

windows7-x64

219a368f63...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    219a368f63a7c475cdc3ce7f40139775_JaffaCakes118

  • Size

    76KB

  • Sample

    240703-jqq3eaxdqj

  • MD5

    219a368f63a7c475cdc3ce7f40139775

  • SHA1

    41cd74098d32e5cee26aae09a5287228c46fd1c7

  • SHA256

    bff1836ba907d404d3a83ebc11a9f6bb65ee2caa12195c05cab63aafa3396aaf

  • SHA512

    21a77e85e4ac945be04e53de893c3c154b8d6b79ea997e8dbef5c42b3747dd15b75aa5ddd0c065b1607c1844f00ae9fe30fa9d55a9c7c4cb84109b10fe83334e

  • SSDEEP

    1536:OmoVHLTQe6sbrNS6aHBH5nC9qfauYW8rERK1fqYuuTGlWopJlI0:r6ke6UrNS6oZC9arar0uTGoopJlI0

Score
8/10
persistenceprivilege_escalation

Malware Config

Targets

    • Target

      219a368f63a7c475cdc3ce7f40139775_JaffaCakes118

    • Size

      76KB

    • MD5

      219a368f63a7c475cdc3ce7f40139775

    • SHA1

      41cd74098d32e5cee26aae09a5287228c46fd1c7

    • SHA256

      bff1836ba907d404d3a83ebc11a9f6bb65ee2caa12195c05cab63aafa3396aaf

    • SHA512

      21a77e85e4ac945be04e53de893c3c154b8d6b79ea997e8dbef5c42b3747dd15b75aa5ddd0c065b1607c1844f00ae9fe30fa9d55a9c7c4cb84109b10fe83334e

    • SSDEEP

      1536:OmoVHLTQe6sbrNS6aHBH5nC9qfauYW8rERK1fqYuuTGlWopJlI0:r6ke6UrNS6oZC9arar0uTGoopJlI0

    Score
    8/10
    persistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks