General

  • Target

    c08295de886822149cbc1e926e86d719_JaffaCakes118

  • Size

    69KB

  • Sample

    240825-l774cs1apn

  • MD5

    c08295de886822149cbc1e926e86d719

  • SHA1

    512690fb78c42ebd1553566fc2587c74a46b2a94

  • SHA256

    844eb88f173d3ec875d46932d4b5165965ab0830c35a3df488b55bb13566bb87

  • SHA512

    72db3ffbfbeb05f087e5d7499883e030781d05e562c31854d5b175dc983d184bc65d1b75b89c6bd659eb76204c679d1f24aafbd45c4789658df931d4496b1ab6

  • SSDEEP

    1536:O+qbWazhvnYlQYWH8LwOx3MD6xWfzYBCZH:OHDtYwIwl2QfE+

Malware Config

Targets

    • Target

      c08295de886822149cbc1e926e86d719_JaffaCakes118

    • Size

      69KB

    • MD5

      c08295de886822149cbc1e926e86d719

    • SHA1

      512690fb78c42ebd1553566fc2587c74a46b2a94

    • SHA256

      844eb88f173d3ec875d46932d4b5165965ab0830c35a3df488b55bb13566bb87

    • SHA512

      72db3ffbfbeb05f087e5d7499883e030781d05e562c31854d5b175dc983d184bc65d1b75b89c6bd659eb76204c679d1f24aafbd45c4789658df931d4496b1ab6

    • SSDEEP

      1536:O+qbWazhvnYlQYWH8LwOx3MD6xWfzYBCZH:OHDtYwIwl2QfE+

    • Server Software Component: Terminal Services DLL

    • Deletes itself

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks