Overview

overview

8

Static

static

3

a58a9a2437...18.exe

windows7-x64

a58a9a2437...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    a58a9a2437f93a53683e359c61337be1_JaffaCakes118

  • Size

    92KB

  • Sample

    240818-f2ft2azhmm

  • MD5

    a58a9a2437f93a53683e359c61337be1

  • SHA1

    7961803dd3c791b002d9997600f83475ba625242

  • SHA256

    661c8498bef348faf0d5be3c4558c13eb69595737b0545ba8bb467dc4caddc83

  • SHA512

    6685421bb7aeeacb9f2745903829a3a6b855654aa8a93b8b7473331a8d3d0a9a629ef742348cff568a45b2925d38e78b6407ca0c8e736f909acc553266f8bdca

  • SSDEEP

    1536:R6VPJiqKQB+4cUrA+n95XY8nkl/oUy/226rNSv4UOgaP1vAEhEacLfHwzGo:R6VPkGB+4cU7nDnWny/KJSvALyacszGo

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      a58a9a2437f93a53683e359c61337be1_JaffaCakes118

    • Size

      92KB

    • MD5

      a58a9a2437f93a53683e359c61337be1

    • SHA1

      7961803dd3c791b002d9997600f83475ba625242

    • SHA256

      661c8498bef348faf0d5be3c4558c13eb69595737b0545ba8bb467dc4caddc83

    • SHA512

      6685421bb7aeeacb9f2745903829a3a6b855654aa8a93b8b7473331a8d3d0a9a629ef742348cff568a45b2925d38e78b6407ca0c8e736f909acc553266f8bdca

    • SSDEEP

      1536:R6VPJiqKQB+4cUrA+n95XY8nkl/oUy/226rNSv4UOgaP1vAEhEacLfHwzGo:R6VPkGB+4cU7nDnWny/KJSvALyacszGo

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks