2397effaf737f643dc8bf6a2777db16caddda88d348f94d0b64cc9d9b3f17890 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

652c3bd90b41a0eb17511012ea2a70a3_JaffaCakes118
Size

69KB
Sample

240722-2446asthqn
MD5

652c3bd90b41a0eb17511012ea2a70a3
SHA1

384d34c1d032fe3c79eb575be4c739a75dfc6a0e
SHA256

2397effaf737f643dc8bf6a2777db16caddda88d348f94d0b64cc9d9b3f17890
SHA512

29348c7c1b973dac3b685099df5d0340c3a87d30f917613d533965c0bcaa5e1ca153064bab31184137cba1fed6e3ddada81b59e554b4882bcf3376cf0dc3ad51
SSDEEP

1536:09BKe6TPprN/0j+UHauFa8hnfcILk/QejwppooRHheW:Xes5mpFaMxef4QW

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  652c3bd90b41a0eb17511012ea2a70a3_JaffaCakes118
- Size
  
  69KB
- MD5
  
  652c3bd90b41a0eb17511012ea2a70a3
- SHA1
  
  384d34c1d032fe3c79eb575be4c739a75dfc6a0e
- SHA256
  
  2397effaf737f643dc8bf6a2777db16caddda88d348f94d0b64cc9d9b3f17890
- SHA512
  
  29348c7c1b973dac3b685099df5d0340c3a87d30f917613d533965c0bcaa5e1ca153064bab31184137cba1fed6e3ddada81b59e554b4882bcf3376cf0dc3ad51
- SSDEEP
  
  1536:09BKe6TPprN/0j+UHauFa8hnfcILk/QejwppooRHheW:Xes5mpFaMxef4QW
Score

8^/10

persistence
- Server Software Component: Terminal Services DLL
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Server Software Component

Terminal Services DLL

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2