Overview

overview

7

Static

static

3

548c0bc86d...18.exe

windows7-x64

7

548c0bc86d...18.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    548c0bc86d71ef71cfa1f1c63f747b46_JaffaCakes118

  • Size

    62KB

  • Sample

    241018-a4cbqswdkb

  • MD5

    548c0bc86d71ef71cfa1f1c63f747b46

  • SHA1

    c53376317d5a1c38074d1b31acb75ce970284b0b

  • SHA256

    db149529ae80efeab8278a1f30e091afd84093ab4a416f74bc6b246b2d347cc2

  • SHA512

    662b24fc5e095840881a771dc245723d1687386e95130610b1e0f13721a3eca72926359a2e87b3c69e7636d7c0e2cbb6df4ca8d24a231a27b6ae62b7d7eafb99

  • SSDEEP

    768:LZNEVIDpRCBeOJvxgQq+4fJ24FYHAhVbqOJluGLP5R70CXcg4jnkCouFO5Jl:EID8LxgR+Q29HubbjrvJ4rroug5Jl

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      548c0bc86d71ef71cfa1f1c63f747b46_JaffaCakes118

    • Size

      62KB

    • MD5

      548c0bc86d71ef71cfa1f1c63f747b46

    • SHA1

      c53376317d5a1c38074d1b31acb75ce970284b0b

    • SHA256

      db149529ae80efeab8278a1f30e091afd84093ab4a416f74bc6b246b2d347cc2

    • SHA512

      662b24fc5e095840881a771dc245723d1687386e95130610b1e0f13721a3eca72926359a2e87b3c69e7636d7c0e2cbb6df4ca8d24a231a27b6ae62b7d7eafb99

    • SSDEEP

      768:LZNEVIDpRCBeOJvxgQq+4fJ24FYHAhVbqOJluGLP5R70CXcg4jnkCouFO5Jl:EID8LxgR+Q29HubbjrvJ4rroug5Jl

    Score
    7/10
    discoverypersistence

    • Boot or Logon Autostart Execution: Print Processors

      Adversaries may abuse print processors to run malicious DLLs during system boot for persistence and/or privilege escalation.

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks