5ffe33e7a37d5aa852d8cd372446a119155b455bac1ee3a1daf58cb0ebaeb598 | Triage

Sharing

General

Target

44135b120caaff8964a9e4aa6e8411a8_JaffaCakes118
Size

191KB
Sample

240714-dvdpzsvbrn
MD5

44135b120caaff8964a9e4aa6e8411a8
SHA1

9428d2f3a47cff0fbdf6d165d3795acfd435b65c
SHA256

5ffe33e7a37d5aa852d8cd372446a119155b455bac1ee3a1daf58cb0ebaeb598
SHA512

86d2ed02688ed13f405a1cbd15ab41a34c8f48f3c921c45eac11b0ea9b2a51ebbc89f814477245ec6123f82ad0c975b9dbfdffc504c7745f13ec12db61daec75
SSDEEP

3072:W5nG+UAk//Qge7LnM2xroN/gKEES4zVvr1r9NB+dCHPcdHyz04:W5G1AkQ97LnHxsoK3lJd9usPcdHyz04

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  44135b120caaff8964a9e4aa6e8411a8_JaffaCakes118
- Size
  
  191KB
- MD5
  
  44135b120caaff8964a9e4aa6e8411a8
- SHA1
  
  9428d2f3a47cff0fbdf6d165d3795acfd435b65c
- SHA256
  
  5ffe33e7a37d5aa852d8cd372446a119155b455bac1ee3a1daf58cb0ebaeb598
- SHA512
  
  86d2ed02688ed13f405a1cbd15ab41a34c8f48f3c921c45eac11b0ea9b2a51ebbc89f814477245ec6123f82ad0c975b9dbfdffc504c7745f13ec12db61daec75
- SSDEEP
  
  3072:W5nG+UAk//Qge7LnM2xroN/gKEES4zVvr1r9NB+dCHPcdHyz04:W5G1AkQ97LnHxsoK3lJd9usPcdHyz04
Score

8^/10

persistence
- Server Software Component: Terminal Services DLL
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Server Software Component

Terminal Services DLL

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2