78e8b35045fc7d01b086f9fb9a264d3dbe1c2e9faba8870dbf9badcf0a3565b9 | Triage

Sharing

General

Target

3104d3d15a1bfb701c8394f068a2607a_JaffaCakes118
Size

48KB
Sample

240709-tdnrmatajc
MD5

3104d3d15a1bfb701c8394f068a2607a
SHA1

321759e3c58e688ff81dfa97f705d0af8ac02d90
SHA256

78e8b35045fc7d01b086f9fb9a264d3dbe1c2e9faba8870dbf9badcf0a3565b9
SHA512

feca7d55ca474573b4a829737c41d84b78ce02bec72d3ade026b1e61886ef2ae23a3ee572ab4354c53dd633bda0e850e6f8c4b470061a263ba1c3f44ed6fa7c6
SSDEEP

1536:T2Qm4/6rycjuQnp2UHlrrf/yslrW3tC9z:TrmU63nwUFmYW4R

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  3104d3d15a1bfb701c8394f068a2607a_JaffaCakes118
- Size
  
  48KB
- MD5
  
  3104d3d15a1bfb701c8394f068a2607a
- SHA1
  
  321759e3c58e688ff81dfa97f705d0af8ac02d90
- SHA256
  
  78e8b35045fc7d01b086f9fb9a264d3dbe1c2e9faba8870dbf9badcf0a3565b9
- SHA512
  
  feca7d55ca474573b4a829737c41d84b78ce02bec72d3ade026b1e61886ef2ae23a3ee572ab4354c53dd633bda0e850e6f8c4b470061a263ba1c3f44ed6fa7c6
- SSDEEP
  
  1536:T2Qm4/6rycjuQnp2UHlrrf/yslrW3tC9z:TrmU63nwUFmYW4R
Score

8^/10

persistence
- Server Software Component: Terminal Services DLL
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Server Software Component

Terminal Services DLL

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2