Overview

overview

8

Static

static

3

487ad3fe3c...18.exe

windows7-x64

487ad3fe3c...18.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    487ad3fe3c8f23f30690d99b1481135a_JaffaCakes118

  • Size

    104KB

  • Sample

    240715-ghnwza1bqq

  • MD5

    487ad3fe3c8f23f30690d99b1481135a

  • SHA1

    0d71ba9f8736e0e6d6f183a892d908ce539519ae

  • SHA256

    da8a521098d64240db94d33e606e919ee68049c148ea560fe135611c61803b89

  • SHA512

    e02ae1dd6ed5f05b3ba9cd4943d50040fa1ca06c775b18fecf14d0ba7f55a0d16cf2893e88da1316855268a93b9f37ccc7a6b07aa75fec10d35dff9e3f857cfc

  • SSDEEP

    1536:p2h8aJ/VGhm4v2xHVmlIbj9nnnu/R/iQdirw4Iwceu+nBgyoDPj6mQ:p2h8m/chblIFqfdQbIZebBgyoD0

Score
8/10
persistenceprivilege_escalation

Malware Config

Targets

    • Target

      487ad3fe3c8f23f30690d99b1481135a_JaffaCakes118

    • Size

      104KB

    • MD5

      487ad3fe3c8f23f30690d99b1481135a

    • SHA1

      0d71ba9f8736e0e6d6f183a892d908ce539519ae

    • SHA256

      da8a521098d64240db94d33e606e919ee68049c148ea560fe135611c61803b89

    • SHA512

      e02ae1dd6ed5f05b3ba9cd4943d50040fa1ca06c775b18fecf14d0ba7f55a0d16cf2893e88da1316855268a93b9f37ccc7a6b07aa75fec10d35dff9e3f857cfc

    • SSDEEP

      1536:p2h8aJ/VGhm4v2xHVmlIbj9nnnu/R/iQdirw4Iwceu+nBgyoDPj6mQ:p2h8m/chblIFqfdQbIZebBgyoD0

    Score
    8/10
    persistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks