Overview

overview

8

Static

static

3

720739c5c9...18.exe

windows7-x64

720739c5c9...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    720739c5c9549fad4e0da116e9102ea2_JaffaCakes118

  • Size

    92KB

  • Sample

    240726-blx16axanm

  • MD5

    720739c5c9549fad4e0da116e9102ea2

  • SHA1

    7ba4d5c1edcf5574b52030e623ddea27318818aa

  • SHA256

    fea2bed4b123de3b77e57b26b4c122ca9d8e933581411b1cfdc1866f4d7024a5

  • SHA512

    4828a7cee5f0159f3efe14cc7406bc128aa045793c0f2c4d736b9d35b84149f1e19616a48110ba62957a79eef16f798443294c38450bd474098341470b37f82b

  • SSDEEP

    1536:MPUUSy3zYWjnnmheBnwawTAg8b2hNat572HKuSN6xAKAEhEacLfHwzGo:ASy3zZnnHBnwaG8K/aTCdbyacszGo

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      720739c5c9549fad4e0da116e9102ea2_JaffaCakes118

    • Size

      92KB

    • MD5

      720739c5c9549fad4e0da116e9102ea2

    • SHA1

      7ba4d5c1edcf5574b52030e623ddea27318818aa

    • SHA256

      fea2bed4b123de3b77e57b26b4c122ca9d8e933581411b1cfdc1866f4d7024a5

    • SHA512

      4828a7cee5f0159f3efe14cc7406bc128aa045793c0f2c4d736b9d35b84149f1e19616a48110ba62957a79eef16f798443294c38450bd474098341470b37f82b

    • SSDEEP

      1536:MPUUSy3zYWjnnmheBnwawTAg8b2hNat572HKuSN6xAKAEhEacLfHwzGo:ASy3zZnnHBnwaG8K/aTCdbyacszGo

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks