Overview

overview

8

Static

static

3

23f2c62722...18.exe

windows7-x64

3

23f2c62722...18.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    23f2c62722a58805da4807ce7100e014_JaffaCakes118

  • Size

    78KB

  • Sample

    240704-adnl3stbpp

  • MD5

    23f2c62722a58805da4807ce7100e014

  • SHA1

    8097a6282fe045e5059ba3d3bb869060c1071bcc

  • SHA256

    6baf6c1331dcb951769fcc04a8d92ea280042aa9168f91880b2ad2148f0006f3

  • SHA512

    09ef2d3017a18634ce1417da1a0f90a32758c0c6f9c57309ed2ed4ceed908468cdb629ef9f75dd2ffafbec1b4edecf7ca254f80ecfc5f8e8e8bae638a2f97378

  • SSDEEP

    1536:ky5SJJIp53JPG0zNPAVrBF7/tSYwDnl5rsJ0UqRqPvp5Vwb3iomJlIK:rcg53VzNPSrRnsjrsJCSRw7iomJlIK

Score
8/10
persistenceprivilege_escalation

Malware Config

Targets

    • Target

      23f2c62722a58805da4807ce7100e014_JaffaCakes118

    • Size

      78KB

    • MD5

      23f2c62722a58805da4807ce7100e014

    • SHA1

      8097a6282fe045e5059ba3d3bb869060c1071bcc

    • SHA256

      6baf6c1331dcb951769fcc04a8d92ea280042aa9168f91880b2ad2148f0006f3

    • SHA512

      09ef2d3017a18634ce1417da1a0f90a32758c0c6f9c57309ed2ed4ceed908468cdb629ef9f75dd2ffafbec1b4edecf7ca254f80ecfc5f8e8e8bae638a2f97378

    • SSDEEP

      1536:ky5SJJIp53JPG0zNPAVrBF7/tSYwDnl5rsJ0UqRqPvp5Vwb3iomJlIK:rcg53VzNPSrRnsjrsJCSRw7iomJlIK

    Score
    8/10
    persistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks