Overview

overview

8

Static

static

3

8707608a61...18.exe

windows7-x64

8707608a61...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    8707608a6150c86608945cce07e1edb8_JaffaCakes118

  • Size

    100KB

  • Sample

    240810-wa8zhazfmj

  • MD5

    8707608a6150c86608945cce07e1edb8

  • SHA1

    d90280b58c6b6baac18f006aea40513d74ccb5b1

  • SHA256

    a225301e8436b789588f03874678fd162305a4f21f3fbf4ae059ecd3ac90888e

  • SHA512

    424099ac6b2c981dcbe843f1544778d0ccea49ddf736c8df01b24ba3fc9365e503c936125f0bff592957e397af6be2d98d5fb73cd974fa330b6988a7be7fe536

  • SSDEEP

    1536:4BYofhXCAFtdmajOwxfGG6LVKZoZ2r6vykTw5Rgo70HYRIA:6xhSO0UOWGGaj20ykTsRgo7kY

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      8707608a6150c86608945cce07e1edb8_JaffaCakes118

    • Size

      100KB

    • MD5

      8707608a6150c86608945cce07e1edb8

    • SHA1

      d90280b58c6b6baac18f006aea40513d74ccb5b1

    • SHA256

      a225301e8436b789588f03874678fd162305a4f21f3fbf4ae059ecd3ac90888e

    • SHA512

      424099ac6b2c981dcbe843f1544778d0ccea49ddf736c8df01b24ba3fc9365e503c936125f0bff592957e397af6be2d98d5fb73cd974fa330b6988a7be7fe536

    • SSDEEP

      1536:4BYofhXCAFtdmajOwxfGG6LVKZoZ2r6vykTw5Rgo70HYRIA:6xhSO0UOWGGaj20ykTsRgo7kY

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks