43cb2ee00deb60ef574042dcf7f845e140421faa3f1ae1cf9419ee6f5b9bcfab | Triage

Sharing

General

Target

31c8c8f81a6c1836c9a1972ba23cd46e_JaffaCakes118
Size

238KB
Sample

240709-yshalsvara
MD5

31c8c8f81a6c1836c9a1972ba23cd46e
SHA1

b9469f7838a4b3bf096eb1877ee15081541d019c
SHA256

43cb2ee00deb60ef574042dcf7f845e140421faa3f1ae1cf9419ee6f5b9bcfab
SHA512

4fdcf970a61f592641daa2ec4d4d84f2f0ea10675b516bc1a0e929bb6fd89654034685b8b585e7b6525c04dc0fd0fee10c684672408fcb4b874efa5373dfb515
SSDEEP

6144:5PISNDkrK1IK3hEnkDUxc2CIoBl+htDl+htal+0:5PISNA8R/gxcBBl+htDl+htal+0

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  31c8c8f81a6c1836c9a1972ba23cd46e_JaffaCakes118
- Size
  
  238KB
- MD5
  
  31c8c8f81a6c1836c9a1972ba23cd46e
- SHA1
  
  b9469f7838a4b3bf096eb1877ee15081541d019c
- SHA256
  
  43cb2ee00deb60ef574042dcf7f845e140421faa3f1ae1cf9419ee6f5b9bcfab
- SHA512
  
  4fdcf970a61f592641daa2ec4d4d84f2f0ea10675b516bc1a0e929bb6fd89654034685b8b585e7b6525c04dc0fd0fee10c684672408fcb4b874efa5373dfb515
- SSDEEP
  
  6144:5PISNDkrK1IK3hEnkDUxc2CIoBl+htDl+htal+0:5PISNA8R/gxcBBl+htDl+htal+0
Score

8^/10

persistence
- Server Software Component: Terminal Services DLL
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Server Software Component

Terminal Services DLL

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2