Overview

overview

8

Static

static

3

676f7451f0...18.exe

windows7-x64

676f7451f0...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    676f7451f00cd89fbf7613bc2480f30c_JaffaCakes118

  • Size

    100KB

  • Sample

    240723-nshw2avbpl

  • MD5

    676f7451f00cd89fbf7613bc2480f30c

  • SHA1

    702466bbc3c76dd3c8b47d9695e1429021fab58a

  • SHA256

    33dc76248aa950954eac4b834c6d8610907b47e48c941700be55600a23c03395

  • SHA512

    95482926f43d813d93302a5bb0662b0a9b877dfab9d0d55fd20f6e50a07811e272e89cd90dc1cadd78f9edd63d3c845e941c89be4c7929f0e0548ba620d69cf4

  • SSDEEP

    1536:P9+U6iudCJbjfCmzP6thAXqbZEHuvPlh1RvykTw5Rgo70HYRIA:PxmSCm76TZUunlh15ykTsRgo7kY

Score
8/10
persistenceprivilege_escalation

Malware Config

Targets

    • Target

      676f7451f00cd89fbf7613bc2480f30c_JaffaCakes118

    • Size

      100KB

    • MD5

      676f7451f00cd89fbf7613bc2480f30c

    • SHA1

      702466bbc3c76dd3c8b47d9695e1429021fab58a

    • SHA256

      33dc76248aa950954eac4b834c6d8610907b47e48c941700be55600a23c03395

    • SHA512

      95482926f43d813d93302a5bb0662b0a9b877dfab9d0d55fd20f6e50a07811e272e89cd90dc1cadd78f9edd63d3c845e941c89be4c7929f0e0548ba620d69cf4

    • SSDEEP

      1536:P9+U6iudCJbjfCmzP6thAXqbZEHuvPlh1RvykTw5Rgo70HYRIA:PxmSCm76TZUunlh15ykTsRgo7kY

    Score
    8/10
    persistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks