f45a8845fd3d0a5acafa1d85cb5058773bf06bc486b4aef466a58ae32f937ea1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3871070d3e2e4e21043d2954cb7e7791_JaffaCakes118
Size

66KB
Sample

240711-kn35mayemr
MD5

3871070d3e2e4e21043d2954cb7e7791
SHA1

43af0d576ab806aa035933d5deb2209302df7a94
SHA256

f45a8845fd3d0a5acafa1d85cb5058773bf06bc486b4aef466a58ae32f937ea1
SHA512

af01f14d6a774bb9769298c743bf319d0a271c27719bc529f41264a36377cfae3780c566d4aa6a46e8aa3d6d06d909134ddd1545641e0713b128870c7e0a1f0d
SSDEEP

1536:BOJ4DqTv3n8tnpBSTBiiuzDdi0S+++++++++++d/+++++++z++k++++++++SNHUu:o/PDsiuzDdi0WNHUPQ6A

Score

8^/10

persistence vmprotect

Malware Config

Targets

- Target
  
  3871070d3e2e4e21043d2954cb7e7791_JaffaCakes118
- Size
  
  66KB
- MD5
  
  3871070d3e2e4e21043d2954cb7e7791
- SHA1
  
  43af0d576ab806aa035933d5deb2209302df7a94
- SHA256
  
  f45a8845fd3d0a5acafa1d85cb5058773bf06bc486b4aef466a58ae32f937ea1
- SHA512
  
  af01f14d6a774bb9769298c743bf319d0a271c27719bc529f41264a36377cfae3780c566d4aa6a46e8aa3d6d06d909134ddd1545641e0713b128870c7e0a1f0d
- SSDEEP
  
  1536:BOJ4DqTv3n8tnpBSTBiiuzDdi0S+++++++++++d/+++++++z++k++++++++SNHUu:o/PDsiuzDdi0WNHUPQ6A
Score

8^/10

persistence
- Server Software Component: Terminal Services DLL
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Server Software Component

Terminal Services DLL

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2