Overview

overview

8

Static

static

3

dfb9f0c6ab...18.exe

windows7-x64

dfb9f0c6ab...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    dfb9f0c6abeefa2543fc37ee41c770b0_JaffaCakes118

  • Size

    92KB

  • Sample

    240914-h5pbpasbpl

  • MD5

    dfb9f0c6abeefa2543fc37ee41c770b0

  • SHA1

    3c41649d357413355a6bed1b023f80b253a64edd

  • SHA256

    e936008f77618185fb1200f8a8ad45bbb8e26b213e904d9b6239a669fe46ec7f

  • SHA512

    977831437868ce59fb38dfca44db779bbd0bc4be353df95a150ea1b86ff9a14db44e35bbd74c183236379da8bc4095beb1fbb4345e9e72b1ba1138c4e4ba0090

  • SSDEEP

    1536:Xx8k4cQ17sS6ApAcE9tyDHvywfOBNGmd7drXsIRrAEhEacLfHwzGo:Xx8k4cK7sSrVCQBuGucIRlyacszGo

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      dfb9f0c6abeefa2543fc37ee41c770b0_JaffaCakes118

    • Size

      92KB

    • MD5

      dfb9f0c6abeefa2543fc37ee41c770b0

    • SHA1

      3c41649d357413355a6bed1b023f80b253a64edd

    • SHA256

      e936008f77618185fb1200f8a8ad45bbb8e26b213e904d9b6239a669fe46ec7f

    • SHA512

      977831437868ce59fb38dfca44db779bbd0bc4be353df95a150ea1b86ff9a14db44e35bbd74c183236379da8bc4095beb1fbb4345e9e72b1ba1138c4e4ba0090

    • SSDEEP

      1536:Xx8k4cQ17sS6ApAcE9tyDHvywfOBNGmd7drXsIRrAEhEacLfHwzGo:Xx8k4cK7sSrVCQBuGucIRlyacszGo

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks