Overview

overview

5

Static

static

3

fbf2edf341...18.exe

windows7-x64

5

fbf2edf341...18.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fbf2edf34178226895115d926e7a7c67_JaffaCakes118

  • Size

    716KB

  • Sample

    240420-fbmjwshe7w

  • MD5

    fbf2edf34178226895115d926e7a7c67

  • SHA1

    22ed7e2f8d8e45fda6ff5c2c0a702a27bb1a50c3

  • SHA256

    31f81f616e422425c76b1d45360901a162d619d61cf6e2828c7d7767faf9461c

  • SHA512

    2587b9e034835aeb83316e963443378b89a50fe91a9e1e7eaaa528543506d61dcb6f6e7508cf46225594e5b6cab1cc234368a6d7aef6eb7eedc5ef7c2783e49d

  • SSDEEP

    12288:SEHlhuGsHl5KGuyGFRu3dcxH0qlPiJiC7ZVhS:zHqhl0GuyGFygPiJz7E

Score
5/10
microsoftphishing

Malware Config

Targets

    • Target

      fbf2edf34178226895115d926e7a7c67_JaffaCakes118

    • Size

      716KB

    • MD5

      fbf2edf34178226895115d926e7a7c67

    • SHA1

      22ed7e2f8d8e45fda6ff5c2c0a702a27bb1a50c3

    • SHA256

      31f81f616e422425c76b1d45360901a162d619d61cf6e2828c7d7767faf9461c

    • SHA512

      2587b9e034835aeb83316e963443378b89a50fe91a9e1e7eaaa528543506d61dcb6f6e7508cf46225594e5b6cab1cc234368a6d7aef6eb7eedc5ef7c2783e49d

    • SSDEEP

      12288:SEHlhuGsHl5KGuyGFRu3dcxH0qlPiJiC7ZVhS:zHqhl0GuyGFygPiJz7E

    Score
    5/10
    microsoftphishing

    • Detected potential entity reuse from brand microsoft.

      phishingmicrosoft

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

2
T1082

Query Registry

1
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks