Overview

overview

8

Static

static

3

db998b2c5e...18.exe

windows7-x64

db998b2c5e...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    db998b2c5e17ad6a7a7f426c8669a679_JaffaCakes118

  • Size

    104KB

  • Sample

    240912-b6vrjavdjn

  • MD5

    db998b2c5e17ad6a7a7f426c8669a679

  • SHA1

    dd5ad74fd2a60cb05c4a8d5bdbe374e09797baa9

  • SHA256

    1472714e09f2188ab5e21042e624fe61f77cde77f9e668301e49ae806b79b42f

  • SHA512

    32407a80151c8bef828b18b88f975b81900f048dd9ef99ee52acca93d0c9ccb7c3a665510ef62267c9f7e97a3c7c52ed2aa271bcc915ce6846eecd1890b83a9d

  • SSDEEP

    1536:NagH/F1x9Q9HjEqS2Y8vz1DiiLj2slA8M8eCS/oU9wceu+nBgyoDPj6mQ:TFHC3vz1N6wM8/S/T9ZebBgyoD0

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      db998b2c5e17ad6a7a7f426c8669a679_JaffaCakes118

    • Size

      104KB

    • MD5

      db998b2c5e17ad6a7a7f426c8669a679

    • SHA1

      dd5ad74fd2a60cb05c4a8d5bdbe374e09797baa9

    • SHA256

      1472714e09f2188ab5e21042e624fe61f77cde77f9e668301e49ae806b79b42f

    • SHA512

      32407a80151c8bef828b18b88f975b81900f048dd9ef99ee52acca93d0c9ccb7c3a665510ef62267c9f7e97a3c7c52ed2aa271bcc915ce6846eecd1890b83a9d

    • SSDEEP

      1536:NagH/F1x9Q9HjEqS2Y8vz1DiiLj2slA8M8eCS/oU9wceu+nBgyoDPj6mQ:TFHC3vz1N6wM8/S/T9ZebBgyoD0

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks