6e484981b456d00eac2f86702eb632738b086d689040ea6b1f1dacf9c321fdab | Triage

Sharing

General

Target

4775c59cf2b8bc50c711a2d13a3d0dee_JaffaCakes118
Size

58KB
Sample

240715-axdafszcnm
MD5

4775c59cf2b8bc50c711a2d13a3d0dee
SHA1

a251e31c74161be66d11fe535151fe02f76cf2ce
SHA256

6e484981b456d00eac2f86702eb632738b086d689040ea6b1f1dacf9c321fdab
SHA512

f6963031db5cdacb5de11a5bcb0d39acbe5dd02cd9df8f55c0352e7acafaead59cd3d9c23b84cb4972d291f624addff1efa71b93c122f65904e1cdec35820e1f
SSDEEP

1536:n6E61syf8nM/sPIug8qKhYHBUiSXdzSEH+nmwm:nDisyfKus1wwX

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  4775c59cf2b8bc50c711a2d13a3d0dee_JaffaCakes118
- Size
  
  58KB
- MD5
  
  4775c59cf2b8bc50c711a2d13a3d0dee
- SHA1
  
  a251e31c74161be66d11fe535151fe02f76cf2ce
- SHA256
  
  6e484981b456d00eac2f86702eb632738b086d689040ea6b1f1dacf9c321fdab
- SHA512
  
  f6963031db5cdacb5de11a5bcb0d39acbe5dd02cd9df8f55c0352e7acafaead59cd3d9c23b84cb4972d291f624addff1efa71b93c122f65904e1cdec35820e1f
- SSDEEP
  
  1536:n6E61syf8nM/sPIug8qKhYHBUiSXdzSEH+nmwm:nDisyfKus1wwX
Score

7^/10

persistence
- Boot or Logon Autostart Execution: Print Processors
  Adversaries may abuse print processors to run malicious DLLs during system boot for persistence and/or privilege escalation.
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Print Processors

Privilege Escalation

Boot or Logon Autostart Execution

Print Processors

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2