Overview

overview

8

Static

static

3

fc03ea7d72...18.exe

windows7-x64

8

fc03ea7d72...18.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    fc03ea7d729a45ef43e71787838cda2f_JaffaCakes118

  • Size

    179KB

  • Sample

    240928-lmp22syenq

  • MD5

    fc03ea7d729a45ef43e71787838cda2f

  • SHA1

    d3b646be3eed16a4e7c730bd6123ef7a0cea44bb

  • SHA256

    7ea518dcb980594f5c7cdb4b6b02220ecf84b42889f7d545959f3e62708b15bb

  • SHA512

    8dbcc993277ee081668db8f36b7cf6282d36a06441768d712a2f1ebd64567c04dcec6f48ee0d4c45847faa923491b3603da1c580c4f5726cc664ee82d779fb04

  • SSDEEP

    3072:qkooQ2ajKo6Hjnfr93i7NW0WYC1OxsTGkqYPUTXMRif3YoanfqiIxyjD:qh2Bo6Dnfr93OWYC1V1qYPQq7fqfxeD

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      fc03ea7d729a45ef43e71787838cda2f_JaffaCakes118

    • Size

      179KB

    • MD5

      fc03ea7d729a45ef43e71787838cda2f

    • SHA1

      d3b646be3eed16a4e7c730bd6123ef7a0cea44bb

    • SHA256

      7ea518dcb980594f5c7cdb4b6b02220ecf84b42889f7d545959f3e62708b15bb

    • SHA512

      8dbcc993277ee081668db8f36b7cf6282d36a06441768d712a2f1ebd64567c04dcec6f48ee0d4c45847faa923491b3603da1c580c4f5726cc664ee82d779fb04

    • SSDEEP

      3072:qkooQ2ajKo6Hjnfr93i7NW0WYC1OxsTGkqYPUTXMRif3YoanfqiIxyjD:qh2Bo6Dnfr93OWYC1V1qYPQq7fqfxeD

    Score
    8/10
    discoverypersistence

    • Server Software Component: Terminal Services DLL

      persistence

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks