Overview

overview

8

Static

static

3

ea820ad7a3...18.exe

windows7-x64

ea820ad7a3...18.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ea820ad7a3eac79e347d2d62e7d2bfaa_JaffaCakes118

  • Size

    96KB

  • Sample

    240919-d386vsyena

  • MD5

    ea820ad7a3eac79e347d2d62e7d2bfaa

  • SHA1

    77a7ca6503db1bd08fc2ba4fa6869fd0354e2084

  • SHA256

    3b8d4189ab1784f11481f8407c12b8d761daba3e586ed9fcda3970bf7adf5628

  • SHA512

    b0acb2d9256f27c7116e17671cfc474f90a103045c7cdcc5aa37ae6f14208eb246e8bcc69a2f4ed23d24f09d8cf617f7b21f5157b1fea9e71e8312d1cf27949c

  • SSDEEP

    1536:z4OmDuQlriYNYHccL5f0fqorpD4C3PsqLTE9Fr0FM9nkAigeKq9vVoAu:ziLwYNUl5qSGfU0SpkpKUvVo/

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      ea820ad7a3eac79e347d2d62e7d2bfaa_JaffaCakes118

    • Size

      96KB

    • MD5

      ea820ad7a3eac79e347d2d62e7d2bfaa

    • SHA1

      77a7ca6503db1bd08fc2ba4fa6869fd0354e2084

    • SHA256

      3b8d4189ab1784f11481f8407c12b8d761daba3e586ed9fcda3970bf7adf5628

    • SHA512

      b0acb2d9256f27c7116e17671cfc474f90a103045c7cdcc5aa37ae6f14208eb246e8bcc69a2f4ed23d24f09d8cf617f7b21f5157b1fea9e71e8312d1cf27949c

    • SSDEEP

      1536:z4OmDuQlriYNYHccL5f0fqorpD4C3PsqLTE9Fr0FM9nkAigeKq9vVoAu:ziLwYNUl5qSGfU0SpkpKUvVo/

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks