110d4b321408fd74743d5884024b328bcacb33765611721d0950a4b5fb9e1388 | Triage

Sharing

General

Target

6644fb1562391bae936c140da70a34d5_JaffaCakes118
Size

226KB
Sample

240723-fvp45ayhpd
MD5

6644fb1562391bae936c140da70a34d5
SHA1

50a1949bcf2993b2faee90340fbd8f7573167264
SHA256

110d4b321408fd74743d5884024b328bcacb33765611721d0950a4b5fb9e1388
SHA512

b2dff0fbe0110997c54a6f67d9e1dcb6a737a956f94ca8f7bdb81d8809e80e125b5f686e0edc87a80288d7f77205082bb8e5faa2b4cce06aa976da6d0892893b
SSDEEP

6144:y1RgeS/LXPoBQfFMCEVtqhr23CjNtr/PbMmJ/a7aSr:+geS/LoiaCcqA0PbMVae

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  6644fb1562391bae936c140da70a34d5_JaffaCakes118
- Size
  
  226KB
- MD5
  
  6644fb1562391bae936c140da70a34d5
- SHA1
  
  50a1949bcf2993b2faee90340fbd8f7573167264
- SHA256
  
  110d4b321408fd74743d5884024b328bcacb33765611721d0950a4b5fb9e1388
- SHA512
  
  b2dff0fbe0110997c54a6f67d9e1dcb6a737a956f94ca8f7bdb81d8809e80e125b5f686e0edc87a80288d7f77205082bb8e5faa2b4cce06aa976da6d0892893b
- SSDEEP
  
  6144:y1RgeS/LXPoBQfFMCEVtqhr23CjNtr/PbMmJ/a7aSr:+geS/LoiaCcqA0PbMVae
Score

8^/10

persistence
- Server Software Component: Terminal Services DLL
  persistence
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Server Software Component

Terminal Services DLL

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2