Overview

overview

8

Static

static

3

fc4ce9cc80...18.exe

windows7-x64

fc4ce9cc80...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    fc4ce9cc80adc29fdbe5c4ca3ce636ee_JaffaCakes118

  • Size

    92KB

  • Sample

    240928-ppdzcaycre

  • MD5

    fc4ce9cc80adc29fdbe5c4ca3ce636ee

  • SHA1

    1e24e6ee880ac6b6d6bb3adc2af1f218a65f3e8f

  • SHA256

    f1ceed6e5cbd56e412e316395a60ac83b249992a27b303b0825cee01cf1d3122

  • SHA512

    ba171d6a13650c65a0a0c58f45f2eadae0ee6b29ef2607ada9ce04a657608ef9c0a7a3f4899c527cd9f3f3b854d00f790da7f4c3e0c019d97e07e1caa77c6b33

  • SSDEEP

    1536:8BrYr9jZHxTyfLvTlxjf6au8afsJakVyMYOus77ABUAEhEacLfHwzGo:SrYZedlffO0JuLsA0yacszGo

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      fc4ce9cc80adc29fdbe5c4ca3ce636ee_JaffaCakes118

    • Size

      92KB

    • MD5

      fc4ce9cc80adc29fdbe5c4ca3ce636ee

    • SHA1

      1e24e6ee880ac6b6d6bb3adc2af1f218a65f3e8f

    • SHA256

      f1ceed6e5cbd56e412e316395a60ac83b249992a27b303b0825cee01cf1d3122

    • SHA512

      ba171d6a13650c65a0a0c58f45f2eadae0ee6b29ef2607ada9ce04a657608ef9c0a7a3f4899c527cd9f3f3b854d00f790da7f4c3e0c019d97e07e1caa77c6b33

    • SSDEEP

      1536:8BrYr9jZHxTyfLvTlxjf6au8afsJakVyMYOus77ABUAEhEacLfHwzGo:SrYZedlffO0JuLsA0yacszGo

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks