Overview

overview

8

Static

static

3

a8839c323c...18.exe

windows7-x64

a8839c323c...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    a8839c323c11d6bb7e135528b4dd535a_JaffaCakes118

  • Size

    104KB

  • Sample

    240818-2nt1dsyfkh

  • MD5

    a8839c323c11d6bb7e135528b4dd535a

  • SHA1

    781eafd1d021ece72668ccd6ed8f82a5aa204ce5

  • SHA256

    5790f7bd69f79d7366fb721c5ccd88fb211bf6700ad841fa247cb24040ad6580

  • SHA512

    d28ba746086b2ccf765ba92deecf5bca5612932a6c2d45dfc8b4bd900b5aeb3353e59c269cbbd7c1c5b5c4210bf98b440d3b0340b43909eb6a04fa117b02bf12

  • SSDEEP

    3072:ljpY4bqzHGc6OpYDwEQnAMAVlgnf/ebBgyoD0:lu4bUHDRZnZAL+OqG

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      a8839c323c11d6bb7e135528b4dd535a_JaffaCakes118

    • Size

      104KB

    • MD5

      a8839c323c11d6bb7e135528b4dd535a

    • SHA1

      781eafd1d021ece72668ccd6ed8f82a5aa204ce5

    • SHA256

      5790f7bd69f79d7366fb721c5ccd88fb211bf6700ad841fa247cb24040ad6580

    • SHA512

      d28ba746086b2ccf765ba92deecf5bca5612932a6c2d45dfc8b4bd900b5aeb3353e59c269cbbd7c1c5b5c4210bf98b440d3b0340b43909eb6a04fa117b02bf12

    • SSDEEP

      3072:ljpY4bqzHGc6OpYDwEQnAMAVlgnf/ebBgyoD0:lu4bUHDRZnZAL+OqG

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks