557f0d2bfccadefa4bc53d12eddbf0b791cb51adcc04869999fcd2bb0e1f10e3 | Triage

Sharing

General

Target

2e9406fe44340b2b104a334bf07cddf6_JaffaCakes118
Size

1.1MB
Sample

240709-b7jqnaseje
MD5

2e9406fe44340b2b104a334bf07cddf6
SHA1

63632dd3db89fff9962ff63676dfc6123cf80f54
SHA256

557f0d2bfccadefa4bc53d12eddbf0b791cb51adcc04869999fcd2bb0e1f10e3
SHA512

ba0cdcee0e0a00c5eb51c231eb432a8924411b96978d5a6b157427ee15073264e9badf0ab4ca0297382a3e797c30ca1f6fc48f87d8b0a2652af044038e998643
SSDEEP

24576:SMpZ4OxwR1QcQq/W7ihb4bPWmBLXvPmVpTrdzjs00E:SuNZ7Ib8ZBL2/Xj

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  2e9406fe44340b2b104a334bf07cddf6_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  2e9406fe44340b2b104a334bf07cddf6
- SHA1
  
  63632dd3db89fff9962ff63676dfc6123cf80f54
- SHA256
  
  557f0d2bfccadefa4bc53d12eddbf0b791cb51adcc04869999fcd2bb0e1f10e3
- SHA512
  
  ba0cdcee0e0a00c5eb51c231eb432a8924411b96978d5a6b157427ee15073264e9badf0ab4ca0297382a3e797c30ca1f6fc48f87d8b0a2652af044038e998643
- SSDEEP
  
  24576:SMpZ4OxwR1QcQq/W7ihb4bPWmBLXvPmVpTrdzjs00E:SuNZ7Ib8ZBL2/Xj
Score

8^/10

persistence
- Server Software Component: Terminal Services DLL
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Server Software Component

Terminal Services DLL

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2