Overview

overview

8

Static

static

3

30c48c6b70...18.exe

windows7-x64

8

30c48c6b70...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    30c48c6b706722b587dad75f2eb20405_JaffaCakes118

  • Size

    278KB

  • Sample

    241010-tnhncsvalb

  • MD5

    30c48c6b706722b587dad75f2eb20405

  • SHA1

    d5075a8a871b133e830fdcccb1075924d83646ba

  • SHA256

    46f8a385b86d08142dd37733e97282265bb83d1d471b33b387409f8cc6d4e522

  • SHA512

    bba57b5408702ab462b7c817c85a48fe023ded5d5e335a3c2cdfe8f6437209cca0f5d14c93932d4f75ce4709f7321de76debb5d476fd8cd02180c525f06c0ce8

  • SSDEEP

    6144:IiV3M7tydyE7ztsY4yTr8bjeJwj2EItHp4Pl6yzh0H0xn:Iu3URWtsYf8PemjE8h0Uxn

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      30c48c6b706722b587dad75f2eb20405_JaffaCakes118

    • Size

      278KB

    • MD5

      30c48c6b706722b587dad75f2eb20405

    • SHA1

      d5075a8a871b133e830fdcccb1075924d83646ba

    • SHA256

      46f8a385b86d08142dd37733e97282265bb83d1d471b33b387409f8cc6d4e522

    • SHA512

      bba57b5408702ab462b7c817c85a48fe023ded5d5e335a3c2cdfe8f6437209cca0f5d14c93932d4f75ce4709f7321de76debb5d476fd8cd02180c525f06c0ce8

    • SSDEEP

      6144:IiV3M7tydyE7ztsY4yTr8bjeJwj2EItHp4Pl6yzh0H0xn:Iu3URWtsYf8PemjE8h0Uxn

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks