Overview

overview

8

Static

static

3

ae7fb5faaa...18.exe

windows7-x64

ae7fb5faaa...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    ae7fb5faaae2bf14fcab0eb385728efe_JaffaCakes118

  • Size

    104KB

  • Sample

    240820-j9wr1awbkq

  • MD5

    ae7fb5faaae2bf14fcab0eb385728efe

  • SHA1

    c334c604cd5253ff9a176625721f8e58d88f2e67

  • SHA256

    9e8907ca2b8af43dd95a0e9dd00aefcabe911915401599a4e4418d3e73ad286f

  • SHA512

    d303528e1719f93092ad293d2e3e0aeb7a8639f6e280c3be8e6243f732181aed9a0db2a260b7a010212c87a202ecfb2cda6b54ce732cd91c5df60a3d81053c7c

  • SSDEEP

    3072:9K1lzUPLO81f8HBQHHTqcWls40qbebBgyoD0:9KP38iLPN07qG

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      ae7fb5faaae2bf14fcab0eb385728efe_JaffaCakes118

    • Size

      104KB

    • MD5

      ae7fb5faaae2bf14fcab0eb385728efe

    • SHA1

      c334c604cd5253ff9a176625721f8e58d88f2e67

    • SHA256

      9e8907ca2b8af43dd95a0e9dd00aefcabe911915401599a4e4418d3e73ad286f

    • SHA512

      d303528e1719f93092ad293d2e3e0aeb7a8639f6e280c3be8e6243f732181aed9a0db2a260b7a010212c87a202ecfb2cda6b54ce732cd91c5df60a3d81053c7c

    • SSDEEP

      3072:9K1lzUPLO81f8HBQHHTqcWls40qbebBgyoD0:9KP38iLPN07qG

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks