Overview

overview

8

Static

static

3

88515e07aa...18.exe

windows7-x64

88515e07aa...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    88515e07aaa3e8f31e5a76c738eea87b_JaffaCakes118

  • Size

    88KB

  • Sample

    240811-ay2pfa1bka

  • MD5

    88515e07aaa3e8f31e5a76c738eea87b

  • SHA1

    906028d847645cfbdc4559772ddc525fcb10ebf8

  • SHA256

    b8a529f97e1681bef7840b4e0647105b80d958d6324ffce1f2a25249db9ff125

  • SHA512

    dbf23c7203511424cb0a5727aa318a729bc47ce4b7ef0804f4caadc106c542eb38765cb298cd4a5a24f7eb381cb2fe8404fb656e7d915b815d3fedd10f9371f1

  • SSDEEP

    1536:ZifaD+INHdZD2UUcr/qFZYjwU0nS+dMbXV1klrZ5bVEEEC7xZopSluTHT9KoTJlz:ZmaDxZ2UUkizUvASJbX65bVBEC7oEkrL

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      88515e07aaa3e8f31e5a76c738eea87b_JaffaCakes118

    • Size

      88KB

    • MD5

      88515e07aaa3e8f31e5a76c738eea87b

    • SHA1

      906028d847645cfbdc4559772ddc525fcb10ebf8

    • SHA256

      b8a529f97e1681bef7840b4e0647105b80d958d6324ffce1f2a25249db9ff125

    • SHA512

      dbf23c7203511424cb0a5727aa318a729bc47ce4b7ef0804f4caadc106c542eb38765cb298cd4a5a24f7eb381cb2fe8404fb656e7d915b815d3fedd10f9371f1

    • SSDEEP

      1536:ZifaD+INHdZD2UUcr/qFZYjwU0nS+dMbXV1klrZ5bVEEEC7xZopSluTHT9KoTJlz:ZmaDxZ2UUkizUvASJbX65bVBEC7oEkrL

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks