c9b5f7657dc2caf399b01e2ac2f700fabbf7579f87f38f5b67ed250857696580 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8bbd6f8e406ae37754275028d8c53879_JaffaCakes118
Size

4KB
Sample

240811-yl85ravenr
MD5

8bbd6f8e406ae37754275028d8c53879
SHA1

042884fe47e3842ed71baed80421bd2d3e8a6b7d
SHA256

c9b5f7657dc2caf399b01e2ac2f700fabbf7579f87f38f5b67ed250857696580
SHA512

b947cedc3334be61ccb9f23dcfcedd1cae6544ceedad5ef150a72aa1c69d41300784d9f5c8b8d86b4f528fc984d4d186d1b30ded80dc241b699d2a555e4ec50b

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  8bbd6f8e406ae37754275028d8c53879_JaffaCakes118
- Size
  
  4KB
- MD5
  
  8bbd6f8e406ae37754275028d8c53879
- SHA1
  
  042884fe47e3842ed71baed80421bd2d3e8a6b7d
- SHA256
  
  c9b5f7657dc2caf399b01e2ac2f700fabbf7579f87f38f5b67ed250857696580
- SHA512
  
  b947cedc3334be61ccb9f23dcfcedd1cae6544ceedad5ef150a72aa1c69d41300784d9f5c8b8d86b4f528fc984d4d186d1b30ded80dc241b699d2a555e4ec50b
Score

8^/10

discovery persistence
- Server Software Component: Terminal Services DLL
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Server Software Component

Terminal Services DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence