Overview

overview

8

Static

static

3

8ab032761a...18.exe

windows7-x64

8ab032761a...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    8ab032761a7862228d574ffb1555da24_JaffaCakes118

  • Size

    92KB

  • Sample

    240811-rlwq4atakl

  • MD5

    8ab032761a7862228d574ffb1555da24

  • SHA1

    ba1001ebafd111fd71483a222d15531820241d52

  • SHA256

    0aa0335aed50961cf8ef8bffa9dddb4aed1f751effd37f89cf5c33e054323e7f

  • SHA512

    477b7983256f8d330b9daa1e7f5761aed7379d67116ab94fe9c8946e6788646c278d31b80902714116fcf88e5d05a225b2254886a51dd134a40bd403d8841da0

  • SSDEEP

    1536:0l3LgjCIHvb0glXxyHhiM68AUCeAEhEacLfHwzGo:A3Li5HjJXxyPYUjyacszGo

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      8ab032761a7862228d574ffb1555da24_JaffaCakes118

    • Size

      92KB

    • MD5

      8ab032761a7862228d574ffb1555da24

    • SHA1

      ba1001ebafd111fd71483a222d15531820241d52

    • SHA256

      0aa0335aed50961cf8ef8bffa9dddb4aed1f751effd37f89cf5c33e054323e7f

    • SHA512

      477b7983256f8d330b9daa1e7f5761aed7379d67116ab94fe9c8946e6788646c278d31b80902714116fcf88e5d05a225b2254886a51dd134a40bd403d8841da0

    • SSDEEP

      1536:0l3LgjCIHvb0glXxyHhiM68AUCeAEhEacLfHwzGo:A3Li5HjJXxyPYUjyacszGo

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks