28ac7c74229072fd3d4b5a11d113930fdf94935f04991a923c6fa98516e69b64 | Triage

Sharing

General

Target

246bd05d8eb3f548d9938d01e2ce7b5c_JaffaCakes118
Size

1.1MB
Sample

240704-dmjaha1elr
MD5

246bd05d8eb3f548d9938d01e2ce7b5c
SHA1

e177fff3a6a3a4aab2c283433e2f83b2a5de54c1
SHA256

28ac7c74229072fd3d4b5a11d113930fdf94935f04991a923c6fa98516e69b64
SHA512

412b994c712c9b115931e32a46058d9f518f578562ae2e9cabb05383f06c12c5f8eb555a46eb4c8dc6c9894cd5fa8782b2c6db917df7d00a4512ca54d4f65486
SSDEEP

24576:SMpZ4OxwR1QcQq/W7ihb4bPWmBLXvPmVpTrdzjs006:SuNZ7Ib8ZBL2/X5

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  246bd05d8eb3f548d9938d01e2ce7b5c_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  246bd05d8eb3f548d9938d01e2ce7b5c
- SHA1
  
  e177fff3a6a3a4aab2c283433e2f83b2a5de54c1
- SHA256
  
  28ac7c74229072fd3d4b5a11d113930fdf94935f04991a923c6fa98516e69b64
- SHA512
  
  412b994c712c9b115931e32a46058d9f518f578562ae2e9cabb05383f06c12c5f8eb555a46eb4c8dc6c9894cd5fa8782b2c6db917df7d00a4512ca54d4f65486
- SSDEEP
  
  24576:SMpZ4OxwR1QcQq/W7ihb4bPWmBLXvPmVpTrdzjs006:SuNZ7Ib8ZBL2/X5
Score

8^/10

persistence
- Server Software Component: Terminal Services DLL
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Server Software Component

Terminal Services DLL

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2