General
-
Target
454701dae0d94fa4d3ca3e8fc5286eb2_JaffaCakes118
-
Size
22KB
-
Sample
240714-ln5h5avfnr
-
MD5
454701dae0d94fa4d3ca3e8fc5286eb2
-
SHA1
1e1562e90ad1cc4af708b3c6f724e9a9330abe64
-
SHA256
d499539e38e1676018e679e4bfe243babe076c4cadaf32b7678719c356b5ffcb
-
SHA512
6478d9bb9fdc77f6f12036aa76cdcba54fa4507761f5d54539533e1ffced842c6d8aea140446a0ddf03e49d148caaaeaa06c216e13ffb53300c4ebf9043f6ebf
-
SSDEEP
384:VPyZNjtU2mmNAxbb+29Cd7i2cXhjfHI+/N6l+jptB4jjkHzXev6IL+loj9:tyZHi7AYdfHI+1aCpEwXevbLR
Malware Config
Targets
-
-
Target
454701dae0d94fa4d3ca3e8fc5286eb2_JaffaCakes118
-
Size
22KB
-
MD5
454701dae0d94fa4d3ca3e8fc5286eb2
-
SHA1
1e1562e90ad1cc4af708b3c6f724e9a9330abe64
-
SHA256
d499539e38e1676018e679e4bfe243babe076c4cadaf32b7678719c356b5ffcb
-
SHA512
6478d9bb9fdc77f6f12036aa76cdcba54fa4507761f5d54539533e1ffced842c6d8aea140446a0ddf03e49d148caaaeaa06c216e13ffb53300c4ebf9043f6ebf
-
SSDEEP
384:VPyZNjtU2mmNAxbb+29Cd7i2cXhjfHI+/N6l+jptB4jjkHzXev6IL+loj9:tyZHi7AYdfHI+1aCpEwXevbLR
Score10/10-
Modifies firewall policy service
-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1AppInit DLLs
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1AppInit DLLs
1