General

  • Target

    ad3a427b7cf17e8c581a74bb25b2c4ac_JaffaCakes118

  • Size

    96KB

  • Sample

    240820-axvjqsvaqa

  • MD5

    ad3a427b7cf17e8c581a74bb25b2c4ac

  • SHA1

    61eca59d7475b0232ed081c5e481e6a8be3721c7

  • SHA256

    e5791f5fc8d159810057cc5e34029c48851e0ca37be66d06b1104c8ae29da2e3

  • SHA512

    3f84cfb27539d385a097fa55c72db01414cf0c5d2e877cec81dce365c51d99afafa6a0aca1e0f8eee7fd714e88e7329f34edef878b91709f91d7ced892338123

  • SSDEEP

    1536:ZXDNqhbqxbkicLNjPpZibuAWCrogOBzZ1geKq9vVoAu:ZTNlkJLZRZzAdcgczLKUvVo/

Malware Config

Targets

    • Target

      ad3a427b7cf17e8c581a74bb25b2c4ac_JaffaCakes118

    • Size

      96KB

    • MD5

      ad3a427b7cf17e8c581a74bb25b2c4ac

    • SHA1

      61eca59d7475b0232ed081c5e481e6a8be3721c7

    • SHA256

      e5791f5fc8d159810057cc5e34029c48851e0ca37be66d06b1104c8ae29da2e3

    • SHA512

      3f84cfb27539d385a097fa55c72db01414cf0c5d2e877cec81dce365c51d99afafa6a0aca1e0f8eee7fd714e88e7329f34edef878b91709f91d7ced892338123

    • SSDEEP

      1536:ZXDNqhbqxbkicLNjPpZibuAWCrogOBzZ1geKq9vVoAu:ZTNlkJLZRZzAdcgczLKUvVo/

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks