Overview

overview

8

Static

static

3

d661edd527...18.exe

windows7-x64

d661edd527...18.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d661edd5271a5ac836e33b8dfad62769_JaffaCakes118

  • Size

    92KB

  • Sample

    240909-qf1meszbqk

  • MD5

    d661edd5271a5ac836e33b8dfad62769

  • SHA1

    49f12500769cfc187f590c374e5b32931f6290f5

  • SHA256

    504369d9fa824854791cecfdab452f67b6aeacfb1278a832dbdbc309c1676d1a

  • SHA512

    a4894913ee6734dc63e52c0de3140356addd8784184028f5f6a2f0ee6db4d3073793ea532ba1a9185c9e52965095769968601e5c794faf35e3a2766ba330a94a

  • SSDEEP

    1536:JM/Z0OzjM0JaA05kk4RCoVT3mhoSN+QXNUE5S/vqPAEhEacLfHwzGo:JWjJL0akACoVT8RAQNUEevyyacszGo

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      d661edd5271a5ac836e33b8dfad62769_JaffaCakes118

    • Size

      92KB

    • MD5

      d661edd5271a5ac836e33b8dfad62769

    • SHA1

      49f12500769cfc187f590c374e5b32931f6290f5

    • SHA256

      504369d9fa824854791cecfdab452f67b6aeacfb1278a832dbdbc309c1676d1a

    • SHA512

      a4894913ee6734dc63e52c0de3140356addd8784184028f5f6a2f0ee6db4d3073793ea532ba1a9185c9e52965095769968601e5c794faf35e3a2766ba330a94a

    • SSDEEP

      1536:JM/Z0OzjM0JaA05kk4RCoVT3mhoSN+QXNUE5S/vqPAEhEacLfHwzGo:JWjJL0akACoVT8RAQNUEevyyacszGo

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks