Overview

overview

8

Static

static

3

82c4509689...18.exe

windows7-x64

82c4509689...18.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    82c4509689358b15b4787412d6d71d13_JaffaCakes118

  • Size

    124KB

  • Sample

    240802-dbsd2awfqg

  • MD5

    82c4509689358b15b4787412d6d71d13

  • SHA1

    a2a406f3d736730092f5c4d0d14c83affa536f0b

  • SHA256

    7258126a2fed95cda45b19690dbb939cebfb6032f3cf26da41698ffc78d30e31

  • SHA512

    2ad5f2503b730831c3c5ca538a6e1be9c776a63021bb2b10daf4359f637df28768132abcb1685d0344d9c40cc110c54dc6fef5e6de37c4d727cbfeb7db1356a1

  • SSDEEP

    3072:OkUv4hvYgwmq1As4cjTZCLZiLiHo5LWAE5zY:OkUvCvdwmq1As4cYUX6z

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      82c4509689358b15b4787412d6d71d13_JaffaCakes118

    • Size

      124KB

    • MD5

      82c4509689358b15b4787412d6d71d13

    • SHA1

      a2a406f3d736730092f5c4d0d14c83affa536f0b

    • SHA256

      7258126a2fed95cda45b19690dbb939cebfb6032f3cf26da41698ffc78d30e31

    • SHA512

      2ad5f2503b730831c3c5ca538a6e1be9c776a63021bb2b10daf4359f637df28768132abcb1685d0344d9c40cc110c54dc6fef5e6de37c4d727cbfeb7db1356a1

    • SSDEEP

      3072:OkUv4hvYgwmq1As4cjTZCLZiLiHo5LWAE5zY:OkUvCvdwmq1As4cYUX6z

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks