Overview

overview

5

Static

static

3

f8336bfdaa...18.exe

windows7-x64

5

f8336bfdaa...18.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f8336bfdaa9e2f1ba511cfa5ce745e15_JaffaCakes118

  • Size

    4.2MB

  • Sample

    240418-rxbkasgh6v

  • MD5

    f8336bfdaa9e2f1ba511cfa5ce745e15

  • SHA1

    e9dc7d4cf5be828d1e2b7f85e04ece6c226160f4

  • SHA256

    4710ee80c697c32611d3397be8ab1baa94eb74762c4a6bbb986df411ef34e817

  • SHA512

    9c208fadeaae4f5381accb05d8ccae2a74f645cf7e9515c94701a98cd5e04f7c4a2f4fdb51c3259c410b9b1bc157488898c647df0e517a0555c618cfbd46e5fa

  • SSDEEP

    12288:SQoS493ACIl7vI1kiqHNnyVek/a4qmHNX467pu3d5nTmS:SQoIjIbgyLC4b5467gN9mS

Score
5/10
microsoftphishing

Malware Config

Targets

    • Target

      f8336bfdaa9e2f1ba511cfa5ce745e15_JaffaCakes118

    • Size

      4.2MB

    • MD5

      f8336bfdaa9e2f1ba511cfa5ce745e15

    • SHA1

      e9dc7d4cf5be828d1e2b7f85e04ece6c226160f4

    • SHA256

      4710ee80c697c32611d3397be8ab1baa94eb74762c4a6bbb986df411ef34e817

    • SHA512

      9c208fadeaae4f5381accb05d8ccae2a74f645cf7e9515c94701a98cd5e04f7c4a2f4fdb51c3259c410b9b1bc157488898c647df0e517a0555c618cfbd46e5fa

    • SSDEEP

      12288:SQoS493ACIl7vI1kiqHNnyVek/a4qmHNX467pu3d5nTmS:SQoIjIbgyLC4b5467gN9mS

    Score
    5/10
    microsoftphishing

    • Detected potential entity reuse from brand microsoft.

      phishingmicrosoft

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

2
T1082

Query Registry

1
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks