Overview

overview

8

Static

static

3

73a3b61b2d...18.exe

windows7-x64

73a3b61b2d...18.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    73a3b61b2da005ca062c8f0385bcc534_JaffaCakes118

  • Size

    108KB

  • Sample

    240726-mc171avdpa

  • MD5

    73a3b61b2da005ca062c8f0385bcc534

  • SHA1

    d83a34f3af257f24a7e9b41e78e2ef3ded50bae8

  • SHA256

    8654799cdfde3309e1dd92d3cffbe2360063a9c3c15408e6c7912e63f72b7187

  • SHA512

    35d1312c5cc84be4dc4c1bd49571fee532695a780c9d27d76619300044b75e51ac2ab4c8b2fb09058880627e642508b7825a61a9704a91fcba5d3f1c13139e70

  • SSDEEP

    1536:ZtZxXcxVXWoXB/xUHAqP0YyN2G5azP6lT74b1Wvzre7PN:ZSxMoXB/x2AqP62G5azyBMbILrON

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      73a3b61b2da005ca062c8f0385bcc534_JaffaCakes118

    • Size

      108KB

    • MD5

      73a3b61b2da005ca062c8f0385bcc534

    • SHA1

      d83a34f3af257f24a7e9b41e78e2ef3ded50bae8

    • SHA256

      8654799cdfde3309e1dd92d3cffbe2360063a9c3c15408e6c7912e63f72b7187

    • SHA512

      35d1312c5cc84be4dc4c1bd49571fee532695a780c9d27d76619300044b75e51ac2ab4c8b2fb09058880627e642508b7825a61a9704a91fcba5d3f1c13139e70

    • SSDEEP

      1536:ZtZxXcxVXWoXB/xUHAqP0YyN2G5azP6lT74b1Wvzre7PN:ZSxMoXB/x2AqP62G5azyBMbILrON

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks