Overview

overview

8

Static

static

3

4af9acd1d2...18.exe

windows7-x64

4af9acd1d2...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    4af9acd1d276daf8f3e90f1e3ce7344d_JaffaCakes118

  • Size

    124KB

  • Sample

    240715-xlmq3svbll

  • MD5

    4af9acd1d276daf8f3e90f1e3ce7344d

  • SHA1

    1ecdfefe8e699da9d13d174ae980c7c468062df5

  • SHA256

    1f1f77e8291a6102b53478c98b23bc313fb92e7ea3d8237efbc60405b67c02af

  • SHA512

    ccacaef914169f9a2f2d90c298ca8abdb12a161651a7b0263b0ee068f588a9d58fd72903da2f5b9ba86b074c44ae7a8fd06f9e372208525e208fa787adf31930

  • SSDEEP

    3072:uQEvQL/szFhCKEOEeluZHojyWAE5zYUoh:upQLqFUKEOEVSBzT

Score
8/10
persistenceprivilege_escalation

Malware Config

Targets

    • Target

      4af9acd1d276daf8f3e90f1e3ce7344d_JaffaCakes118

    • Size

      124KB

    • MD5

      4af9acd1d276daf8f3e90f1e3ce7344d

    • SHA1

      1ecdfefe8e699da9d13d174ae980c7c468062df5

    • SHA256

      1f1f77e8291a6102b53478c98b23bc313fb92e7ea3d8237efbc60405b67c02af

    • SHA512

      ccacaef914169f9a2f2d90c298ca8abdb12a161651a7b0263b0ee068f588a9d58fd72903da2f5b9ba86b074c44ae7a8fd06f9e372208525e208fa787adf31930

    • SSDEEP

      3072:uQEvQL/szFhCKEOEeluZHojyWAE5zYUoh:upQLqFUKEOEVSBzT

    Score
    8/10
    persistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks