1d4bcae89e1eeb2beb520fb68dde77a8a6ca9a77ca2d7a212a412909edd5ff4b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

333156e75a70e77e02d11570e393272a_JaffaCakes118
Size

136KB
Sample

240511-g6vz7aad5y
MD5

333156e75a70e77e02d11570e393272a
SHA1

fcf2b45ab30b29a112fcd2ee58ff5e0815841806
SHA256

1d4bcae89e1eeb2beb520fb68dde77a8a6ca9a77ca2d7a212a412909edd5ff4b
SHA512

75a5d994e240631080099bb72b415e1fec9c9b9156d57f5bbe29ea6d084ea77cf30a0970755af0fa9f2eb8f634ada79e6b8a5285ed7411ec134c6801716539e2
SSDEEP

3072:2wiLVj+jkeLmnZzIwUa7dJudmutL42f4SYly7kt5OrN:2wiYTUiwUa7On2y7WA

Score

6^/10

Malware Config

Targets

- Target
  
  333156e75a70e77e02d11570e393272a_JaffaCakes118
- Size
  
  136KB
- MD5
  
  333156e75a70e77e02d11570e393272a
- SHA1
  
  fcf2b45ab30b29a112fcd2ee58ff5e0815841806
- SHA256
  
  1d4bcae89e1eeb2beb520fb68dde77a8a6ca9a77ca2d7a212a412909edd5ff4b
- SHA512
  
  75a5d994e240631080099bb72b415e1fec9c9b9156d57f5bbe29ea6d084ea77cf30a0970755af0fa9f2eb8f634ada79e6b8a5285ed7411ec134c6801716539e2
- SSDEEP
  
  3072:2wiLVj+jkeLmnZzIwUa7dJudmutL42f4SYly7kt5OrN:2wiYTUiwUa7On2y7WA
Score

6^/10
- Checks for any installed AV software in registry
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

Security Software Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2