Overview

overview

8

Static

static

3

25382cccbd...18.exe

windows7-x64

25382cccbd...18.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    25382cccbd1960264a83e55e72881823_JaffaCakes118

  • Size

    124KB

  • Sample

    240704-jz6t8atfre

  • MD5

    25382cccbd1960264a83e55e72881823

  • SHA1

    848cd9b9719e99bf1cf9b5a33094a95d5e87a866

  • SHA256

    d3c5583e8ba98efc45284bfaf9136cf7dda599a11d0597a5723e59279ee5a117

  • SHA512

    815457fc674e2cae1289ef08f7a62ecb6004e57fc6fb539c4c5dc2e6b907d98680ed2d87ab4e1b5fb0a6483ddb87091086fbe012325a8ceace7c923fd3ac1357

  • SSDEEP

    3072:V6j1yDY7xZgzPlFdvVkiLiHo5LWAE5zY:Vwy2kP3JVdX6z

Score
8/10
persistenceprivilege_escalation

Malware Config

Targets

    • Target

      25382cccbd1960264a83e55e72881823_JaffaCakes118

    • Size

      124KB

    • MD5

      25382cccbd1960264a83e55e72881823

    • SHA1

      848cd9b9719e99bf1cf9b5a33094a95d5e87a866

    • SHA256

      d3c5583e8ba98efc45284bfaf9136cf7dda599a11d0597a5723e59279ee5a117

    • SHA512

      815457fc674e2cae1289ef08f7a62ecb6004e57fc6fb539c4c5dc2e6b907d98680ed2d87ab4e1b5fb0a6483ddb87091086fbe012325a8ceace7c923fd3ac1357

    • SSDEEP

      3072:V6j1yDY7xZgzPlFdvVkiLiHo5LWAE5zY:Vwy2kP3JVdX6z

    Score
    8/10
    persistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks