Overview

overview

7

Static

static

5

06c0e14742...18.dll

windows7-x64

7

06c0e14742...18.dll

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    06c0e14742ffe22e9b4f4ef330ac18e1_JaffaCakes118

  • Size

    95KB

  • Sample

    241001-v6gz8awaqd

  • MD5

    06c0e14742ffe22e9b4f4ef330ac18e1

  • SHA1

    b054a87677302da065fb6d62e74902723b01fdb4

  • SHA256

    dfa397861600e87386b06f0178ffe6abae4c356c10420bbd13c64a3c78a23266

  • SHA512

    f5d659d3e2a2dd1586e6be0aae72ac3aedde3a4d4e760324056dd8a2348c07d5717a256ba1e423a0a94195a63e31a1127cf612b1bcd1b37015cb2a11ea1d5c33

  • SSDEEP

    1536:WtxOpabjbENiPHlhJM33DDUFgRdifCNNmbwc6PDCvbR0npOIcySR4sRz1o+yBpET:WtBXzm3DDUSRIsaMDCtcnVg9RzO/KT

Score
7/10
persistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      06c0e14742ffe22e9b4f4ef330ac18e1_JaffaCakes118

    • Size

      95KB

    • MD5

      06c0e14742ffe22e9b4f4ef330ac18e1

    • SHA1

      b054a87677302da065fb6d62e74902723b01fdb4

    • SHA256

      dfa397861600e87386b06f0178ffe6abae4c356c10420bbd13c64a3c78a23266

    • SHA512

      f5d659d3e2a2dd1586e6be0aae72ac3aedde3a4d4e760324056dd8a2348c07d5717a256ba1e423a0a94195a63e31a1127cf612b1bcd1b37015cb2a11ea1d5c33

    • SSDEEP

      1536:WtxOpabjbENiPHlhJM33DDUFgRdifCNNmbwc6PDCvbR0npOIcySR4sRz1o+yBpET:WtBXzm3DDUSRIsaMDCtcnVg9RzO/KT

    Score
    7/10
    persistenceprivilege_escalationupx

    • Event Triggered Execution: Component Object Model Hijacking

      Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.

      persistenceprivilege_escalation

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks