1f48d49c5ba6c90b3f2027edab90f422b7072a66547deedb473e1aeed7a0bfbe | Triage

Sharing

General

Target

eac2885027019dc96e2305278cb44afb_JaffaCakes118
Size

7KB
Sample

240919-g8f9taveke
MD5

eac2885027019dc96e2305278cb44afb
SHA1

ff199ec5b44d777f4e52d1025eb537c733690950
SHA256

1f48d49c5ba6c90b3f2027edab90f422b7072a66547deedb473e1aeed7a0bfbe
SHA512

20a8c914b201a23501635eefbe7789cb867d70630514f55b7c9bf0707c952d45bf559de61c1261b2f60e6e4e978af294568313a66fcb34d9d61807a109c021d3
SSDEEP

192:9Q62X8ERcrX9S8RN63EjjHT4ETe2FmkgUwunb:9QpFXEUETXFJp

Score

8^/10

discovery persistence privilege_escalation

Malware Config

Targets

- Target
  
  eac2885027019dc96e2305278cb44afb_JaffaCakes118
- Size
  
  7KB
- MD5
  
  eac2885027019dc96e2305278cb44afb
- SHA1
  
  ff199ec5b44d777f4e52d1025eb537c733690950
- SHA256
  
  1f48d49c5ba6c90b3f2027edab90f422b7072a66547deedb473e1aeed7a0bfbe
- SHA512
  
  20a8c914b201a23501635eefbe7789cb867d70630514f55b7c9bf0707c952d45bf559de61c1261b2f60e6e4e978af294568313a66fcb34d9d61807a109c021d3
- SSDEEP
  
  192:9Q62X8ERcrX9S8RN63EjjHT4ETe2FmkgUwunb:9QpFXEUETXFJp
Score

8^/10

discovery persistence privilege_escalation
- Event Triggered Execution: AppInit DLLs
  Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
  persistence privilege_escalation
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

AppInit DLLs

Privilege Escalation

Event Triggered Execution

AppInit DLLs

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceprivilege_escalation

behavioral2

discoverypersistenceprivilege_escalation