003ef872400c9e68ded09d15f4f15eb4541c68f9a81303b33ea56701ba4b098b | Triage

Sharing

General

Target

260a200d9a797e631fe6456bdbdb5f2d_JaffaCakes118
Size

54KB
Sample

240704-yg1mtavhpl
MD5

260a200d9a797e631fe6456bdbdb5f2d
SHA1

7a3459dd8758345796ea15e7a4ed8a6339d2b548
SHA256

003ef872400c9e68ded09d15f4f15eb4541c68f9a81303b33ea56701ba4b098b
SHA512

2cebf41392b008552676d02081f6bd36ab60c5cfe59eb1d769550e39321448164d5c1535fdbb9c1e7220826bf24689a0b3fb0ffabfff88c6522a0989d94abd5b
SSDEEP

768:kSnuAx81xc9L74ITjZbcwr7Uoe+LNGL3lRQpxlPmBOVk2o4wexnnHK21Vnq+CEWx:5Iof4ITF9HnekIR+POOV9o4dq2GzIXE/

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  260a200d9a797e631fe6456bdbdb5f2d_JaffaCakes118
- Size
  
  54KB
- MD5
  
  260a200d9a797e631fe6456bdbdb5f2d
- SHA1
  
  7a3459dd8758345796ea15e7a4ed8a6339d2b548
- SHA256
  
  003ef872400c9e68ded09d15f4f15eb4541c68f9a81303b33ea56701ba4b098b
- SHA512
  
  2cebf41392b008552676d02081f6bd36ab60c5cfe59eb1d769550e39321448164d5c1535fdbb9c1e7220826bf24689a0b3fb0ffabfff88c6522a0989d94abd5b
- SSDEEP
  
  768:kSnuAx81xc9L74ITjZbcwr7Uoe+LNGL3lRQpxlPmBOVk2o4wexnnHK21Vnq+CEWx:5Iof4ITF9HnekIR+POOV9o4dq2GzIXE/
Score

8^/10

persistence
- Server Software Component: Terminal Services DLL
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Server Software Component

Terminal Services DLL

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2