Overview

overview

8

Static

static

3

2b7cdea2bb...18.exe

windows7-x64

2b7cdea2bb...18.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2b7cdea2bbe407c952ae4b5820e08232_JaffaCakes118

  • Size

    100KB

  • Sample

    240708-jdvvtsyejn

  • MD5

    2b7cdea2bbe407c952ae4b5820e08232

  • SHA1

    6c1e8d8974b3ab6f964d4aa2118f5f0a6161a6fc

  • SHA256

    92e7b72d2150e37a1ad9ae962095a96038588b7102c740fbb57fe47cdc9b6ade

  • SHA512

    aee37300d1b69e6c5c75d173056c823c207d231869c09aba611178a800d398e3118340864d1a3c11b9f3dfaa7c9e61fa3c24f9fbd3283cf01111d9daf142778a

  • SSDEEP

    1536:UqxND7s/JJVnO7bAiDWeV7/rOn0lEfy1UuTHM0mno+cJlId:/UJJo7bAKBV7rg+EKuuTSnohJlId

Score
8/10
persistenceprivilege_escalation

Malware Config

Targets

    • Target

      2b7cdea2bbe407c952ae4b5820e08232_JaffaCakes118

    • Size

      100KB

    • MD5

      2b7cdea2bbe407c952ae4b5820e08232

    • SHA1

      6c1e8d8974b3ab6f964d4aa2118f5f0a6161a6fc

    • SHA256

      92e7b72d2150e37a1ad9ae962095a96038588b7102c740fbb57fe47cdc9b6ade

    • SHA512

      aee37300d1b69e6c5c75d173056c823c207d231869c09aba611178a800d398e3118340864d1a3c11b9f3dfaa7c9e61fa3c24f9fbd3283cf01111d9daf142778a

    • SSDEEP

      1536:UqxND7s/JJVnO7bAiDWeV7/rOn0lEfy1UuTHM0mno+cJlId:/UJJo7bAKBV7rg+EKuuTSnohJlId

    Score
    8/10
    persistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks