5f3a72b50f1fcf02e361f463dd3017971e8651be5334834d5c3fd7381a1c4c82 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dcc0158fda53a1c52baeaf9f9e70b465_JaffaCakes118
Size

520KB
Sample

240912-wgp5zawfkg
MD5

dcc0158fda53a1c52baeaf9f9e70b465
SHA1

2c809b6a69d7caf01567d946b205d29ee26d744d
SHA256

5f3a72b50f1fcf02e361f463dd3017971e8651be5334834d5c3fd7381a1c4c82
SHA512

c2e1bebf278cfa2bb54f9f09bf434d173f07b6681d0cc9c92193e41d413bc6049f7abea1ae16eef478e48120d9076e0bdd325c2add4a53c7b3f166bec6ce1d1f
SSDEEP

12288:KcqYYfTWARsfJhwy8z07ksQQ71SIhTZJDmj:KL17RsfJhwFzpTQ711TrDO

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  dcc0158fda53a1c52baeaf9f9e70b465_JaffaCakes118
- Size
  
  520KB
- MD5
  
  dcc0158fda53a1c52baeaf9f9e70b465
- SHA1
  
  2c809b6a69d7caf01567d946b205d29ee26d744d
- SHA256
  
  5f3a72b50f1fcf02e361f463dd3017971e8651be5334834d5c3fd7381a1c4c82
- SHA512
  
  c2e1bebf278cfa2bb54f9f09bf434d173f07b6681d0cc9c92193e41d413bc6049f7abea1ae16eef478e48120d9076e0bdd325c2add4a53c7b3f166bec6ce1d1f
- SSDEEP
  
  12288:KcqYYfTWARsfJhwy8z07ksQQ71SIhTZJDmj:KL17RsfJhwFzpTQ711TrDO
Score

8^/10

discovery persistence
- Server Software Component: Terminal Services DLL
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Server Software Component

Terminal Services DLL

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence