8a02574cbd506aa2607223fa567ef6a107c065c5fe970180c8afb4e9ccd088ab | Triage

Sharing

General

Target

21dc58f20aa515ac6ac166eb37a76ef5_JaffaCakes118
Size

235KB
Sample

240703-lfjxfswepa
MD5

21dc58f20aa515ac6ac166eb37a76ef5
SHA1

cde06e8e9715f105448a35b602730483cd1fb082
SHA256

8a02574cbd506aa2607223fa567ef6a107c065c5fe970180c8afb4e9ccd088ab
SHA512

f4013e5c29d55243543e62f5581206be1acbdc3ef3cf4b5ad8de19d0fbd008d464d3ed30fcb3485a75bb6f395ed3c9ce347048d4e7bd45fc2b9d7f56331d672a
SSDEEP

6144:5PISNDkrK1IK3hEnkDUxc2CIoatal+Qtal+u:5PISNA8R/gxcBatal+Qtal+u

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  21dc58f20aa515ac6ac166eb37a76ef5_JaffaCakes118
- Size
  
  235KB
- MD5
  
  21dc58f20aa515ac6ac166eb37a76ef5
- SHA1
  
  cde06e8e9715f105448a35b602730483cd1fb082
- SHA256
  
  8a02574cbd506aa2607223fa567ef6a107c065c5fe970180c8afb4e9ccd088ab
- SHA512
  
  f4013e5c29d55243543e62f5581206be1acbdc3ef3cf4b5ad8de19d0fbd008d464d3ed30fcb3485a75bb6f395ed3c9ce347048d4e7bd45fc2b9d7f56331d672a
- SSDEEP
  
  6144:5PISNDkrK1IK3hEnkDUxc2CIoatal+Qtal+u:5PISNA8R/gxcBatal+Qtal+u
Score

8^/10

persistence
- Server Software Component: Terminal Services DLL
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Server Software Component

Terminal Services DLL

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2