Overview

overview

8

Static

static

3

64b952d279...18.exe

windows7-x64

64b952d279...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    64b952d279cd593d8140350eba9b7610_JaffaCakes118

  • Size

    92KB

  • Sample

    240722-zfqa5axepj

  • MD5

    64b952d279cd593d8140350eba9b7610

  • SHA1

    c0f0342fe325335b7ad8f68cc8289f2b035c6bb9

  • SHA256

    57bc2b31572193f0e04d45572f21f30ec026ce93f51ccdfe61a95f2a42b789b5

  • SHA512

    b7a7b5445faf480a62ec1de609897b8ff32284cb7b1603f465f91e1a7db4611738f6181981ea46248481eacc483bc29ef65e5d60677357072f87c5b37a49ea27

  • SSDEEP

    1536:AxtNcsCC6L4yDvXjjGJUgBTWG3qFUfW1gKeTpwEsMo:Apc5C8vXjjcDFWGC6KevsMo

Score
8/10
persistenceprivilege_escalation

Malware Config

Targets

    • Target

      64b952d279cd593d8140350eba9b7610_JaffaCakes118

    • Size

      92KB

    • MD5

      64b952d279cd593d8140350eba9b7610

    • SHA1

      c0f0342fe325335b7ad8f68cc8289f2b035c6bb9

    • SHA256

      57bc2b31572193f0e04d45572f21f30ec026ce93f51ccdfe61a95f2a42b789b5

    • SHA512

      b7a7b5445faf480a62ec1de609897b8ff32284cb7b1603f465f91e1a7db4611738f6181981ea46248481eacc483bc29ef65e5d60677357072f87c5b37a49ea27

    • SSDEEP

      1536:AxtNcsCC6L4yDvXjjGJUgBTWG3qFUfW1gKeTpwEsMo:Apc5C8vXjjcDFWGC6KevsMo

    Score
    8/10
    persistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks