Overview

overview

8

Static

static

3

c25192ba93...18.exe

windows7-x64

c25192ba93...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    c25192ba93f2f6542f7b0a8b01f0110a_JaffaCakes118

  • Size

    88KB

  • Sample

    240826-fhgl8awcqd

  • MD5

    c25192ba93f2f6542f7b0a8b01f0110a

  • SHA1

    ac68b5c157f45038205ec095feff7678e71e95ef

  • SHA256

    d6904178bb5466ae55fd11a8ec943dffaa87a4ff136d6ab9bc1ef403e4bbe183

  • SHA512

    e077510c240bf2f0bb920117190f0122003abb3536ec431746cbe912f4d9e55a04a4049e1c35de475b42cd875ba0bc836548b25ef3bd2cdec602aedd08867735

  • SSDEEP

    1536:bQase6GAId+Ra8KvhD1zCBk5CQkGeB+r26xTUoIUUo2vj5UoIUUoIUrIyREEEC7y:UapkId+RJK5DJCBCbxr7DIk2vVIkI7yS

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      c25192ba93f2f6542f7b0a8b01f0110a_JaffaCakes118

    • Size

      88KB

    • MD5

      c25192ba93f2f6542f7b0a8b01f0110a

    • SHA1

      ac68b5c157f45038205ec095feff7678e71e95ef

    • SHA256

      d6904178bb5466ae55fd11a8ec943dffaa87a4ff136d6ab9bc1ef403e4bbe183

    • SHA512

      e077510c240bf2f0bb920117190f0122003abb3536ec431746cbe912f4d9e55a04a4049e1c35de475b42cd875ba0bc836548b25ef3bd2cdec602aedd08867735

    • SSDEEP

      1536:bQase6GAId+Ra8KvhD1zCBk5CQkGeB+r26xTUoIUUo2vj5UoIUUoIUrIyREEEC7y:UapkId+RJK5DJCBCbxr7DIk2vVIkI7yS

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks