e87a6bb6a951fd9a669a5d8fbb2333cd36dfcbe0f54d917e03c3a98caa6d9c06 | Triage

Sharing

General

Target

2fa475e76cb3078dda103f5193e0a111_JaffaCakes118
Size

1.1MB
Sample

240709-kbmxwaxdlc
MD5

2fa475e76cb3078dda103f5193e0a111
SHA1

43fb76212bb4eb9c83b1b61ef98d80fa6c9baafd
SHA256

e87a6bb6a951fd9a669a5d8fbb2333cd36dfcbe0f54d917e03c3a98caa6d9c06
SHA512

c5f07a60b0b5ace28236a041fe7c93668cbcab25945093e84094d2d1f5abd8be393a33130d351aa5129f07181755a421ff1ccca1673404787962b05a6f9a11bd
SSDEEP

24576:SMpZ4OxwR1QcQq/W7ihb4bPWmBLXvPmVpTrdzjs00D:SuNZ7Ib8ZBL2/X4

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  2fa475e76cb3078dda103f5193e0a111_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  2fa475e76cb3078dda103f5193e0a111
- SHA1
  
  43fb76212bb4eb9c83b1b61ef98d80fa6c9baafd
- SHA256
  
  e87a6bb6a951fd9a669a5d8fbb2333cd36dfcbe0f54d917e03c3a98caa6d9c06
- SHA512
  
  c5f07a60b0b5ace28236a041fe7c93668cbcab25945093e84094d2d1f5abd8be393a33130d351aa5129f07181755a421ff1ccca1673404787962b05a6f9a11bd
- SSDEEP
  
  24576:SMpZ4OxwR1QcQq/W7ihb4bPWmBLXvPmVpTrdzjs00D:SuNZ7Ib8ZBL2/X4
Score

8^/10

persistence
- Server Software Component: Terminal Services DLL
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Server Software Component

Terminal Services DLL

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2