Overview

overview

8

Static

static

3

ea98144e04...18.exe

windows7-x64

ea98144e04...18.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ea98144e04d8e4fd071b93d4ee3734a1_JaffaCakes118

  • Size

    100KB

  • Sample

    240919-e7fwjs1dqc

  • MD5

    ea98144e04d8e4fd071b93d4ee3734a1

  • SHA1

    b28feb066c8554dc7b616fde85d999c538f95b0f

  • SHA256

    8895e329cac14bb0bc1f9c256b8d7cc686ddb7599d97b3d522746102148507f7

  • SHA512

    5c643ae53492b3f09a2addadaba5bf30bb11360a9e5390ca3c4b11777c909b75645fe9d2c0ac574271024788cf009f38f5bc1520e579749370ef64a2f7d97adb

  • SSDEEP

    1536:G2ynfrpVbylEeQHRG/CqsHKDTW72iGjRP3iZOcwojDhH1MyDXLHoXSSSeSSS+y:GRnzP8EeQxG0ETS2iwRP3oJt17rLHof

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      ea98144e04d8e4fd071b93d4ee3734a1_JaffaCakes118

    • Size

      100KB

    • MD5

      ea98144e04d8e4fd071b93d4ee3734a1

    • SHA1

      b28feb066c8554dc7b616fde85d999c538f95b0f

    • SHA256

      8895e329cac14bb0bc1f9c256b8d7cc686ddb7599d97b3d522746102148507f7

    • SHA512

      5c643ae53492b3f09a2addadaba5bf30bb11360a9e5390ca3c4b11777c909b75645fe9d2c0ac574271024788cf009f38f5bc1520e579749370ef64a2f7d97adb

    • SSDEEP

      1536:G2ynfrpVbylEeQHRG/CqsHKDTW72iGjRP3iZOcwojDhH1MyDXLHoXSSSeSSS+y:GRnzP8EeQxG0ETS2iwRP3oJt17rLHof

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks