Overview

overview

8

Static

static

3

c96e9bd68b...18.exe

windows7-x64

c96e9bd68b...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    c96e9bd68b001f5167e28d99012364c5_JaffaCakes118

  • Size

    100KB

  • Sample

    240829-xm1dkawdqf

  • MD5

    c96e9bd68b001f5167e28d99012364c5

  • SHA1

    98f0da51a23f067cafd611c5212621b260228e4e

  • SHA256

    c0dc0c548ffa53fa87fc4e9138bd79961e7c1534a8f80e2673eab7fc74e108ac

  • SHA512

    6d8d78cf81dd105ae453a7d1aa3373530ae56fd09bc650f1e6bf4384bb2de96d98bf27f743d8a776e5bfcfd22d68d7ec5a3c6cb5d2798b658c800b23f82ba28c

  • SSDEEP

    1536:+W0MBNEssJh2EX55oq1J5z/pt2FvI+sPSuA8Uu2yk4aYYxvWqfgoqHYRIA:+WznEXDoqFbpchIPA8UIaYY9Wqfgo2Y

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      c96e9bd68b001f5167e28d99012364c5_JaffaCakes118

    • Size

      100KB

    • MD5

      c96e9bd68b001f5167e28d99012364c5

    • SHA1

      98f0da51a23f067cafd611c5212621b260228e4e

    • SHA256

      c0dc0c548ffa53fa87fc4e9138bd79961e7c1534a8f80e2673eab7fc74e108ac

    • SHA512

      6d8d78cf81dd105ae453a7d1aa3373530ae56fd09bc650f1e6bf4384bb2de96d98bf27f743d8a776e5bfcfd22d68d7ec5a3c6cb5d2798b658c800b23f82ba28c

    • SSDEEP

      1536:+W0MBNEssJh2EX55oq1J5z/pt2FvI+sPSuA8Uu2yk4aYYxvWqfgoqHYRIA:+WznEXDoqFbpchIPA8UIaYY9Wqfgo2Y

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks