Overview

overview

8

Static

static

3

3487df4a0a...18.exe

windows7-x64

8

3487df4a0a...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3487df4a0ad369b67e4858de8576a5bb_JaffaCakes118

  • Size

    111KB

  • Sample

    240710-nlgemaxcld

  • MD5

    3487df4a0ad369b67e4858de8576a5bb

  • SHA1

    3b32c1749aeb3b04c87bf0e7b1a9517c7d59b7d7

  • SHA256

    82aa61051443f06cc3ca09f8d0048b38d1647548c483c0e00f0869dbe1407fa9

  • SHA512

    b4498c14767ba3ceaa1acb3be79351ec8fd3c9da3a6a825ca09f7eda5c6b4e77ca028555c565a41fbf1905d112b53c0d91a5d4ec401130752249d3960e08ef1f

  • SSDEEP

    1536:xjx8Xi4oEWXeFT7ThMQbowZV3EIv1MO3d/YUwrrD60wbpsdlwD2fCevwUG:BYi1EGeFHTRblN3dUO0wbpsdlhfCOnG

Score
8/10
persistenceprivilege_escalation

Malware Config

Targets

    • Target

      3487df4a0ad369b67e4858de8576a5bb_JaffaCakes118

    • Size

      111KB

    • MD5

      3487df4a0ad369b67e4858de8576a5bb

    • SHA1

      3b32c1749aeb3b04c87bf0e7b1a9517c7d59b7d7

    • SHA256

      82aa61051443f06cc3ca09f8d0048b38d1647548c483c0e00f0869dbe1407fa9

    • SHA512

      b4498c14767ba3ceaa1acb3be79351ec8fd3c9da3a6a825ca09f7eda5c6b4e77ca028555c565a41fbf1905d112b53c0d91a5d4ec401130752249d3960e08ef1f

    • SSDEEP

      1536:xjx8Xi4oEWXeFT7ThMQbowZV3EIv1MO3d/YUwrrD60wbpsdlwD2fCevwUG:BYi1EGeFHTRblN3dUO0wbpsdlhfCOnG

    Score
    8/10
    persistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks