6c915ba8fe53f393dee3269db8dcde5ac222f03a5b87afbee841f48e3c833416 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

459bd4558d0fa0eb2516f5773a66bd6a_JaffaCakes118
Size

9KB
Sample

240714-nj1qgsybjn
MD5

459bd4558d0fa0eb2516f5773a66bd6a
SHA1

f708e3877052c8775fff654250c34cba8727c188
SHA256

6c915ba8fe53f393dee3269db8dcde5ac222f03a5b87afbee841f48e3c833416
SHA512

b16e7b9376e53eb3b1df9e359c104cc027f69939e76c55314096637dae2de0a4a34a65ca43ee161f6a49c15265c80182faf88c5d1aa7c330cc20b64d5634bb38
SSDEEP

192:hlUryh/0kYz5Rwxzm2qq17+gv9/9w9FHWY2h:hlUWDJqq17+gvZE

Score

8^/10

persistence privilege_escalation

Malware Config

Targets

- Target
  
  459bd4558d0fa0eb2516f5773a66bd6a_JaffaCakes118
- Size
  
  9KB
- MD5
  
  459bd4558d0fa0eb2516f5773a66bd6a
- SHA1
  
  f708e3877052c8775fff654250c34cba8727c188
- SHA256
  
  6c915ba8fe53f393dee3269db8dcde5ac222f03a5b87afbee841f48e3c833416
- SHA512
  
  b16e7b9376e53eb3b1df9e359c104cc027f69939e76c55314096637dae2de0a4a34a65ca43ee161f6a49c15265c80182faf88c5d1aa7c330cc20b64d5634bb38
- SSDEEP
  
  192:hlUryh/0kYz5Rwxzm2qq17+gv9/9w9FHWY2h:hlUWDJqq17+gvZE
Score

8^/10

persistence privilege_escalation
- Event Triggered Execution: AppInit DLLs
  Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
  persistence privilege_escalation
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

AppInit DLLs

Privilege Escalation

Event Triggered Execution

AppInit DLLs

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

persistenceprivilege_escalation

behavioral2

persistenceprivilege_escalation