deb1b2dc66f6c309faaf880544806d25f21ae6c1e7c80b5cebcb2feb1562e41d | Triage

Sharing

General

Target

2af519535544e7627ca1eb8d30a67437_JaffaCakes118
Size

148KB
Sample

240708-ex85casbqq
MD5

2af519535544e7627ca1eb8d30a67437
SHA1

6ab71981d37dda18f61a7ac72ce1bcc1fb4701d4
SHA256

deb1b2dc66f6c309faaf880544806d25f21ae6c1e7c80b5cebcb2feb1562e41d
SHA512

1139be003f89c816335a87dc2955715343680acaca0d9520f3bdb0ce78b940bda4149d841f09c9c80d344842a910bdcd48b9e91ae4f71f83f39b0a5ed7c64ba6
SSDEEP

3072:3XkAWxVjantS/u6QjXsfjNoX3R1+bneGQJjkWhl5XRJ22:30AWxVjI4/vfx4B+npyhl5x

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  2af519535544e7627ca1eb8d30a67437_JaffaCakes118
- Size
  
  148KB
- MD5
  
  2af519535544e7627ca1eb8d30a67437
- SHA1
  
  6ab71981d37dda18f61a7ac72ce1bcc1fb4701d4
- SHA256
  
  deb1b2dc66f6c309faaf880544806d25f21ae6c1e7c80b5cebcb2feb1562e41d
- SHA512
  
  1139be003f89c816335a87dc2955715343680acaca0d9520f3bdb0ce78b940bda4149d841f09c9c80d344842a910bdcd48b9e91ae4f71f83f39b0a5ed7c64ba6
- SSDEEP
  
  3072:3XkAWxVjantS/u6QjXsfjNoX3R1+bneGQJjkWhl5XRJ22:30AWxVjI4/vfx4B+npyhl5x
Score

8^/10

persistence
- Server Software Component: Terminal Services DLL
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Server Software Component

Terminal Services DLL

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2