Overview

overview

8

Static

static

3

d041be1d55...18.exe

windows7-x64

d041be1d55...18.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d041be1d55c7efbb8bc98344a759a488_JaffaCakes118

  • Size

    92KB

  • Sample

    240906-xqfhkashqk

  • MD5

    d041be1d55c7efbb8bc98344a759a488

  • SHA1

    93d476d47590f9120786f5079f609233b42e633a

  • SHA256

    6bab6de80bf9d099d8bd95824a37310123b24b2dc6395417587b0a62c61a726a

  • SHA512

    5b6116ad17a1631de6dff465fc7e1a08e304898ad5cba638fef3b6910370d4e495cc1e6084e6de06ce4de076a73b2c152b66e6ee41fef769fc598389b77740f1

  • SSDEEP

    1536:RdIRNlftH0j01uZW5dL7l/672Kyc1Y2O7DkT8PwTH5ekAEhEacLfHwzGo:RdMGkuZ+L7x672Ky32OGeOyacszGo

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      d041be1d55c7efbb8bc98344a759a488_JaffaCakes118

    • Size

      92KB

    • MD5

      d041be1d55c7efbb8bc98344a759a488

    • SHA1

      93d476d47590f9120786f5079f609233b42e633a

    • SHA256

      6bab6de80bf9d099d8bd95824a37310123b24b2dc6395417587b0a62c61a726a

    • SHA512

      5b6116ad17a1631de6dff465fc7e1a08e304898ad5cba638fef3b6910370d4e495cc1e6084e6de06ce4de076a73b2c152b66e6ee41fef769fc598389b77740f1

    • SSDEEP

      1536:RdIRNlftH0j01uZW5dL7l/672Kyc1Y2O7DkT8PwTH5ekAEhEacLfHwzGo:RdMGkuZ+L7x672Ky32OGeOyacszGo

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks