Overview

overview

8

Static

static

3

bec1bdb767...18.exe

windows7-x64

bec1bdb767...18.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bec1bdb7671894f7934c72c167445262_JaffaCakes118

  • Size

    92KB

  • Sample

    240824-rgg25stdme

  • MD5

    bec1bdb7671894f7934c72c167445262

  • SHA1

    561ca0ab91ef9d12ca417c852ce03b8972dbce0a

  • SHA256

    b0499f035a07c50d5ae8cd714285e19f2d908641862d8a1dca4e8b10a064a604

  • SHA512

    1433e32ff6ce2750d26a0302812668d2818835eda3caba187424f72eac62c90afc958782ae21a5a7b404eb110446f4d10d984c084f5a385cd6cc18fe772fcdb2

  • SSDEEP

    1536:0vNMH2gTrltf9FcS0oxP46VHzOzXHLNH3amKAEhEacLfHwzGo:0F82gfltf9OU9VHz0hXa5yacszGo

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      bec1bdb7671894f7934c72c167445262_JaffaCakes118

    • Size

      92KB

    • MD5

      bec1bdb7671894f7934c72c167445262

    • SHA1

      561ca0ab91ef9d12ca417c852ce03b8972dbce0a

    • SHA256

      b0499f035a07c50d5ae8cd714285e19f2d908641862d8a1dca4e8b10a064a604

    • SHA512

      1433e32ff6ce2750d26a0302812668d2818835eda3caba187424f72eac62c90afc958782ae21a5a7b404eb110446f4d10d984c084f5a385cd6cc18fe772fcdb2

    • SSDEEP

      1536:0vNMH2gTrltf9FcS0oxP46VHzOzXHLNH3amKAEhEacLfHwzGo:0F82gfltf9OU9VHz0hXa5yacszGo

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks