Overview

overview

8

Static

static

3

2745e2dc05...18.exe

windows7-x64

2745e2dc05...18.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2745e2dc05424e1c381f131eb32768ab_JaffaCakes118

  • Size

    100KB

  • Sample

    240706-b7p8fasclm

  • MD5

    2745e2dc05424e1c381f131eb32768ab

  • SHA1

    fe87b467550b28020b5d38ac17ce1c446df699a6

  • SHA256

    49326fb4608100c02346269721060c9c65b498277bf097465aa669f1e6041212

  • SHA512

    b33ace38303f90ea47d74d662cb6c2236356d052d32fa8b3ca02cfbad48de6d200b833b5f8aab7c6dfff86919f7e9d3d6cd9e6d1b44f8979a54131511d212c5a

  • SSDEEP

    1536:miyC8NqE39Fwn+3UR2hn/m4nDFW8zgImUuTHM0mno+cJlId:A8E39FwhRAm78xuTSnohJlId

Score
8/10
persistenceprivilege_escalation

Malware Config

Targets

    • Target

      2745e2dc05424e1c381f131eb32768ab_JaffaCakes118

    • Size

      100KB

    • MD5

      2745e2dc05424e1c381f131eb32768ab

    • SHA1

      fe87b467550b28020b5d38ac17ce1c446df699a6

    • SHA256

      49326fb4608100c02346269721060c9c65b498277bf097465aa669f1e6041212

    • SHA512

      b33ace38303f90ea47d74d662cb6c2236356d052d32fa8b3ca02cfbad48de6d200b833b5f8aab7c6dfff86919f7e9d3d6cd9e6d1b44f8979a54131511d212c5a

    • SSDEEP

      1536:miyC8NqE39Fwn+3UR2hn/m4nDFW8zgImUuTHM0mno+cJlId:A8E39FwhRAm78xuTSnohJlId

    Score
    8/10
    persistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks