Overview

overview

8

Static

static

3

41eaf17af6...18.exe

windows7-x64

41eaf17af6...18.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    41eaf17af6cfe6e01126c5a245ef70d0_JaffaCakes118

  • Size

    100KB

  • Sample

    240713-q1q9gsvfjh

  • MD5

    41eaf17af6cfe6e01126c5a245ef70d0

  • SHA1

    e58b75856b119c56f9e919ac6b579604bbefaf26

  • SHA256

    1a9018c91bab2d71463171f25237feb26bc1e3ed275a8d673c02e8d265e61edd

  • SHA512

    13363f667c8a4a282923032ebc2fc4b3661e7e247f3557d2aab8d7bd79fa3d8864ff24f881827a219f97aa41f5140aa77d1c06780cfa7728c12245f5a022399d

  • SSDEEP

    1536:KB2AnuW/L1JZ7E7BEvB5Anu2zZ3wShR0M7pMg0Yl5Lgo4zHYRIA:KB2AnuWxJFOBiI37jpx0YPLgo47Y

Score
8/10
persistenceprivilege_escalation

Malware Config

Targets

    • Target

      41eaf17af6cfe6e01126c5a245ef70d0_JaffaCakes118

    • Size

      100KB

    • MD5

      41eaf17af6cfe6e01126c5a245ef70d0

    • SHA1

      e58b75856b119c56f9e919ac6b579604bbefaf26

    • SHA256

      1a9018c91bab2d71463171f25237feb26bc1e3ed275a8d673c02e8d265e61edd

    • SHA512

      13363f667c8a4a282923032ebc2fc4b3661e7e247f3557d2aab8d7bd79fa3d8864ff24f881827a219f97aa41f5140aa77d1c06780cfa7728c12245f5a022399d

    • SSDEEP

      1536:KB2AnuW/L1JZ7E7BEvB5Anu2zZ3wShR0M7pMg0Yl5Lgo4zHYRIA:KB2AnuWxJFOBiI37jpx0YPLgo47Y

    Score
    8/10
    persistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks