General
-
Target
dd04817e40b0dae8bfc0509fd1ab6612_JaffaCakes118
-
Size
94KB
-
Sample
240912-zh861stgmf
-
MD5
dd04817e40b0dae8bfc0509fd1ab6612
-
SHA1
73ff0ddb62a5b9fa01709a8cac1b3e348c142145
-
SHA256
ef645af1763d736383736c961e5364e1c4a36a516161582f7cab755ecc5a7b67
-
SHA512
183d37a6a628a7a1612ca173533186916eab858b0f71120e65afaf6b36e6f5472987e89dda71a41fb44ffd8e1ad19a2d6191851339ddccc145fd05a2b490e0b4
-
SSDEEP
1536:mZCHi6dpOo6rhg6xUarqthwzD6m+iN/9ZgRFDg7glJVxVC7/WMDIHo0ZC4EjFf:mZCRBh6g3GDT+mZgRdg7yxYPDilEFf
Malware Config
Targets
-
-
Target
dd04817e40b0dae8bfc0509fd1ab6612_JaffaCakes118
-
Size
94KB
-
MD5
dd04817e40b0dae8bfc0509fd1ab6612
-
SHA1
73ff0ddb62a5b9fa01709a8cac1b3e348c142145
-
SHA256
ef645af1763d736383736c961e5364e1c4a36a516161582f7cab755ecc5a7b67
-
SHA512
183d37a6a628a7a1612ca173533186916eab858b0f71120e65afaf6b36e6f5472987e89dda71a41fb44ffd8e1ad19a2d6191851339ddccc145fd05a2b490e0b4
-
SSDEEP
1536:mZCHi6dpOo6rhg6xUarqthwzD6m+iN/9ZgRFDg7glJVxVC7/WMDIHo0ZC4EjFf:mZCRBh6g3GDT+mZgRdg7yxYPDilEFf
Score7/10-
Boot or Logon Autostart Execution: Print Processors
Adversaries may abuse print processors to run malicious DLLs during system boot for persistence and/or privilege escalation.
-
Drops file in System32 directory
-