General

  • Target

    d9c55d4746c8b350f41038560615fa15_JaffaCakes118

  • Size

    101KB

  • Sample

    240911-g27heswflq

  • MD5

    d9c55d4746c8b350f41038560615fa15

  • SHA1

    a6ab83c98cfbbfec9ebf7835e9e09cd348374069

  • SHA256

    e692f3e75aec466d3c1cee060d522b44d3bc993f6d8e93e8467816ab8a883534

  • SHA512

    4b50eb4c6c99e19526efbc08fa2ae7112bbea0a17a5311b8fa6a903324cc969a2191e8773b99f52edfa2651033034d780490999f04221fe25918886a625ae953

  • SSDEEP

    3072:5bW2WEs0ObbbXlwY62BMR0KkksaCQgjvTk+:NQ0PYG0KTsaCQgjo

Malware Config

Targets

    • Target

      d9c55d4746c8b350f41038560615fa15_JaffaCakes118

    • Size

      101KB

    • MD5

      d9c55d4746c8b350f41038560615fa15

    • SHA1

      a6ab83c98cfbbfec9ebf7835e9e09cd348374069

    • SHA256

      e692f3e75aec466d3c1cee060d522b44d3bc993f6d8e93e8467816ab8a883534

    • SHA512

      4b50eb4c6c99e19526efbc08fa2ae7112bbea0a17a5311b8fa6a903324cc969a2191e8773b99f52edfa2651033034d780490999f04221fe25918886a625ae953

    • SSDEEP

      3072:5bW2WEs0ObbbXlwY62BMR0KkksaCQgjvTk+:NQ0PYG0KTsaCQgjo

    • Server Software Component: Terminal Services DLL

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks