Overview

overview

8

Static

static

3

a72c6b141f...18.exe

windows7-x64

a72c6b141f...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    a72c6b141f58f40e1261326b5fd2d821_JaffaCakes118

  • Size

    100KB

  • Sample

    240818-ssd1aszdnd

  • MD5

    a72c6b141f58f40e1261326b5fd2d821

  • SHA1

    d940bb16d416867a3dbea7e496c42b0bd6c84584

  • SHA256

    4f765b680689e170a8ff1a35008e0b0c177fb8da1128a6d84e96277591b199c2

  • SHA512

    9e4d231fe9e02f6062058827de0f156fe9de283683ae8e69fbd565b04d3cd0318ba1a32a0fb0f80e49aebaba62548110e1e0eab753298f8c04a4609448014454

  • SSDEEP

    1536:DGU5yvPqKuopg5unxhG6iArLidnluhx5wMOloqiZ4roojDhH1MyDXLHoXSSSeSSu:DsyKlwuySinGx5wMZqxrBt17rLHof

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      a72c6b141f58f40e1261326b5fd2d821_JaffaCakes118

    • Size

      100KB

    • MD5

      a72c6b141f58f40e1261326b5fd2d821

    • SHA1

      d940bb16d416867a3dbea7e496c42b0bd6c84584

    • SHA256

      4f765b680689e170a8ff1a35008e0b0c177fb8da1128a6d84e96277591b199c2

    • SHA512

      9e4d231fe9e02f6062058827de0f156fe9de283683ae8e69fbd565b04d3cd0318ba1a32a0fb0f80e49aebaba62548110e1e0eab753298f8c04a4609448014454

    • SSDEEP

      1536:DGU5yvPqKuopg5unxhG6iArLidnluhx5wMOloqiZ4roojDhH1MyDXLHoXSSSeSSu:DsyKlwuySinGx5wMZqxrBt17rLHof

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks