Overview

overview

7

Static

static

3

447a4de793...18.exe

windows7-x64

7

447a4de793...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    447a4de7933f5c498f61eded6c1bbf17_JaffaCakes118

  • Size

    123KB

  • Sample

    241014-2dhjlszbpe

  • MD5

    447a4de7933f5c498f61eded6c1bbf17

  • SHA1

    f5f5fd4e5b435ca3d65618435b93dd9519c6ad1f

  • SHA256

    b08c9834ea89cfd6f5d41ee28bd876b60e679da08999a47e5406fe8c65de92fa

  • SHA512

    8555123b8224eb95d46522e5471d3c679bc3b77057012527ab73f3d6bcf4102f35a3f765ab4a15f33b8b2ab9d3c66aaff972cd18c00e0413e2ba75fb14f4fcc8

  • SSDEEP

    3072:BqT8m6sXzEr+4rjB0oVVdlLFBhVo3IL86zq9:KDErRmoVVnro4I/

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      447a4de7933f5c498f61eded6c1bbf17_JaffaCakes118

    • Size

      123KB

    • MD5

      447a4de7933f5c498f61eded6c1bbf17

    • SHA1

      f5f5fd4e5b435ca3d65618435b93dd9519c6ad1f

    • SHA256

      b08c9834ea89cfd6f5d41ee28bd876b60e679da08999a47e5406fe8c65de92fa

    • SHA512

      8555123b8224eb95d46522e5471d3c679bc3b77057012527ab73f3d6bcf4102f35a3f765ab4a15f33b8b2ab9d3c66aaff972cd18c00e0413e2ba75fb14f4fcc8

    • SSDEEP

      3072:BqT8m6sXzEr+4rjB0oVVdlLFBhVo3IL86zq9:KDErRmoVVnro4I/

    Score
    7/10
    discoverypersistence

    • Boot or Logon Autostart Execution: Print Processors

      Adversaries may abuse print processors to run malicious DLLs during system boot for persistence and/or privilege escalation.

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks