603be23dff578e336b6af0d38f23cb94f1ec0e88fa79acef3f3b9d27032a763a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3f3aab00f0c86ffecb45aa7327be5e09_JaffaCakes118
Size

525KB
Sample

240513-nfwmcsda39
MD5

3f3aab00f0c86ffecb45aa7327be5e09
SHA1

cd3e9ebeb5a84065f05be67dd4b337f1d767b7b2
SHA256

603be23dff578e336b6af0d38f23cb94f1ec0e88fa79acef3f3b9d27032a763a
SHA512

e71cbce5271bcfd1cd7b0d361e15bfed35429f417a3da670f75ade218b96b358c64d86f6cdec49e95ac0d8b7e0c0eae30f2bb8ffaafa2865718d56aecaa7abd4
SSDEEP

3072:jbBzrno/5aQoU/1IyGbG07miHfgjIKt0fgK/4V+5QUKKdE5Lzi7oaZmZflz16exw:jpu5xl07mOXX2Uo5L27/ZmZtLzS

Score

5^/10

Malware Config

Targets

- Target
  
  3f3aab00f0c86ffecb45aa7327be5e09_JaffaCakes118
- Size
  
  525KB
- MD5
  
  3f3aab00f0c86ffecb45aa7327be5e09
- SHA1
  
  cd3e9ebeb5a84065f05be67dd4b337f1d767b7b2
- SHA256
  
  603be23dff578e336b6af0d38f23cb94f1ec0e88fa79acef3f3b9d27032a763a
- SHA512
  
  e71cbce5271bcfd1cd7b0d361e15bfed35429f417a3da670f75ade218b96b358c64d86f6cdec49e95ac0d8b7e0c0eae30f2bb8ffaafa2865718d56aecaa7abd4
- SSDEEP
  
  3072:jbBzrno/5aQoU/1IyGbG07miHfgjIKt0fgK/4V+5QUKKdE5Lzi7oaZmZflz16exw:jpu5xl07mOXX2Uo5L27/ZmZtLzS
Score

5^/10
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2