32ef9328bcea6a90ab941f9ff8a462b15ea53fcf95bba9f8f81ae9f2123dae00 | Triage

Sharing

General

Target

3827ae1205e3e0cb35d3b0aeebb8fef4_JaffaCakes118
Size

127KB
Sample

240711-hx4fmsxdpb
MD5

3827ae1205e3e0cb35d3b0aeebb8fef4
SHA1

09ca91f12007289f3149e416f4b8696c52dc34cc
SHA256

32ef9328bcea6a90ab941f9ff8a462b15ea53fcf95bba9f8f81ae9f2123dae00
SHA512

932a88fb829e8b6567ba023329b873d03a6c1ca7591ca029274a1b931aee1ee69141f94ab8ecb8763ba3bdce091920f8793c120cc637b467806c8bdc2b81903d
SSDEEP

3072:bpga6wBiZjPxzB0zURg3tSiZPNe5sXhpMaHKEc2JN:bpgmBixf04mDeCHB

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  3827ae1205e3e0cb35d3b0aeebb8fef4_JaffaCakes118
- Size
  
  127KB
- MD5
  
  3827ae1205e3e0cb35d3b0aeebb8fef4
- SHA1
  
  09ca91f12007289f3149e416f4b8696c52dc34cc
- SHA256
  
  32ef9328bcea6a90ab941f9ff8a462b15ea53fcf95bba9f8f81ae9f2123dae00
- SHA512
  
  932a88fb829e8b6567ba023329b873d03a6c1ca7591ca029274a1b931aee1ee69141f94ab8ecb8763ba3bdce091920f8793c120cc637b467806c8bdc2b81903d
- SSDEEP
  
  3072:bpga6wBiZjPxzB0zURg3tSiZPNe5sXhpMaHKEc2JN:bpgmBixf04mDeCHB
Score

8^/10

persistence
- Server Software Component: Terminal Services DLL
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Server Software Component

Terminal Services DLL

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2