Overview

overview

8

Static

static

3

2a1c9567c9...18.exe

windows7-x64

2a1c9567c9...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2a1c9567c926aa2725756efec3c91c9d_JaffaCakes118

  • Size

    100KB

  • Sample

    240707-24849a1cjj

  • MD5

    2a1c9567c926aa2725756efec3c91c9d

  • SHA1

    a406ffd10abbeca01f4a175256b744e31e5330d9

  • SHA256

    532c00cfa56b47c611c61ed522b949441a7e14b9806ef1aba1efd574c5de5ab5

  • SHA512

    2fa3c31423c7a22ab7523f43a6be747ac056b3249288a28e7ca0ff154effe3e831355a4770fff4bf10a50ac778f7f553b0e8f5ae9e60b63f922d5ecff4003f4c

  • SSDEEP

    1536:OpW3u8apR4hwk3NSiO5KwNhOrq/I3f+pUuTHM0mno+cJlId:OP8apawk3NSisNIqQ3fpuTSnohJlId

Score
8/10
persistenceprivilege_escalation

Malware Config

Targets

    • Target

      2a1c9567c926aa2725756efec3c91c9d_JaffaCakes118

    • Size

      100KB

    • MD5

      2a1c9567c926aa2725756efec3c91c9d

    • SHA1

      a406ffd10abbeca01f4a175256b744e31e5330d9

    • SHA256

      532c00cfa56b47c611c61ed522b949441a7e14b9806ef1aba1efd574c5de5ab5

    • SHA512

      2fa3c31423c7a22ab7523f43a6be747ac056b3249288a28e7ca0ff154effe3e831355a4770fff4bf10a50ac778f7f553b0e8f5ae9e60b63f922d5ecff4003f4c

    • SSDEEP

      1536:OpW3u8apR4hwk3NSiO5KwNhOrq/I3f+pUuTHM0mno+cJlId:OP8apawk3NSisNIqQ3fpuTSnohJlId

    Score
    8/10
    persistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks