702c5ee0415ebe14b615a1d05e3578273c8f210bbb50ff78c771437d142d0541 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6292a30d8fd32514686b10ee68365dc6_JaffaCakes118
Size

8KB
Sample

240722-kq91ysygql
MD5

6292a30d8fd32514686b10ee68365dc6
SHA1

567d004efee05fee4967950e6b5c2830b37d645b
SHA256

702c5ee0415ebe14b615a1d05e3578273c8f210bbb50ff78c771437d142d0541
SHA512

366d09c0ac7324939321ecbe95ce1b2f3f7905ad69ec8a57ad3df52c02e0ed077d467b1b37af6d51aff360a71b32ac5f152a80f04973194489af8327f381193b
SSDEEP

192:XhT2MHxpQEe2n7m9Ndz11a3ihQzKNi6d9XVaB/hHPnkgUwur:XlJxp37mP111uzai+XV2JHP4V

Score

8^/10

persistence privilege_escalation

Malware Config

Targets

- Target
  
  6292a30d8fd32514686b10ee68365dc6_JaffaCakes118
- Size
  
  8KB
- MD5
  
  6292a30d8fd32514686b10ee68365dc6
- SHA1
  
  567d004efee05fee4967950e6b5c2830b37d645b
- SHA256
  
  702c5ee0415ebe14b615a1d05e3578273c8f210bbb50ff78c771437d142d0541
- SHA512
  
  366d09c0ac7324939321ecbe95ce1b2f3f7905ad69ec8a57ad3df52c02e0ed077d467b1b37af6d51aff360a71b32ac5f152a80f04973194489af8327f381193b
- SSDEEP
  
  192:XhT2MHxpQEe2n7m9Ndz11a3ihQzKNi6d9XVaB/hHPnkgUwur:XlJxp37mP111uzai+XV2JHP4V
Score

8^/10

persistence privilege_escalation
- Event Triggered Execution: AppInit DLLs
  Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
  persistence privilege_escalation
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

AppInit DLLs

Privilege Escalation

Event Triggered Execution

AppInit DLLs

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

persistenceprivilege_escalation

behavioral2

persistenceprivilege_escalation