1ca1465a6dc5fffa7ecb883fec658d1bd418cccc67cc1de7e809acd685dfd1fb | Triage

Sharing

General

Target

02551d75d70f171b439fad2e006cbf50_JaffaCakes118
Size

391KB
Sample

240930-vc48nawajk
MD5

02551d75d70f171b439fad2e006cbf50
SHA1

9dee8b870f87a9060fe8d6f176b05f723c7e6ab1
SHA256

1ca1465a6dc5fffa7ecb883fec658d1bd418cccc67cc1de7e809acd685dfd1fb
SHA512

1a68cc9439e90da907410372ab6f0bc5e8dae006d4f25a8c286e9fee76f904ad90e8c23ee9eba4a4b7a85ca1b4a9897f5ca6c64dcefb7b0b50cdb7f241e2ada5
SSDEEP

6144:IiV3M7tydyE7ztsY4yTr8bjeJwj2EItHp4Pl6yzh0H0xH9NDDOfHvAQ6AyLrFX:Iu3URWtsYf8PemjE8h0UxH9ND6fvha

Score

8^/10

discovery persistence privilege_escalation

Malware Config

Targets

- Target
  
  02551d75d70f171b439fad2e006cbf50_JaffaCakes118
- Size
  
  391KB
- MD5
  
  02551d75d70f171b439fad2e006cbf50
- SHA1
  
  9dee8b870f87a9060fe8d6f176b05f723c7e6ab1
- SHA256
  
  1ca1465a6dc5fffa7ecb883fec658d1bd418cccc67cc1de7e809acd685dfd1fb
- SHA512
  
  1a68cc9439e90da907410372ab6f0bc5e8dae006d4f25a8c286e9fee76f904ad90e8c23ee9eba4a4b7a85ca1b4a9897f5ca6c64dcefb7b0b50cdb7f241e2ada5
- SSDEEP
  
  6144:IiV3M7tydyE7ztsY4yTr8bjeJwj2EItHp4Pl6yzh0H0xH9NDDOfHvAQ6AyLrFX:Iu3URWtsYf8PemjE8h0UxH9ND6fvha
Score

8^/10

discovery persistence privilege_escalation
- Event Triggered Execution: AppInit DLLs
  Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
  persistence privilege_escalation
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

AppInit DLLs

Privilege Escalation

Event Triggered Execution

AppInit DLLs

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceprivilege_escalation

behavioral2