17d5ebc453d33388f1e5eecffd48605265b53577f7c4ebf9551fafca26e822af | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8038658b8d000a4a7ab6a1c3eef13e8b_JaffaCakes118
Size

1.9MB
Sample

240529-k6awsshf9y
MD5

8038658b8d000a4a7ab6a1c3eef13e8b
SHA1

5c85d65a00dd69e5cc445db975620c2e3190141f
SHA256

17d5ebc453d33388f1e5eecffd48605265b53577f7c4ebf9551fafca26e822af
SHA512

25cc24421d121842066d33c70f5f64c068c8c43bd3a5e8bc98a7919752b222f63425cd5e2849b4377da4831ceb7781712948d314fecd23734aa49f772ca9165a
SSDEEP

24576:Yam5upSxntg40rgqWFlhGl67OIJWWLFnl5iTHR65G1q/DnpNfndpkP5mHaTHR60n:tDWHbfFniD6GsVFLaDN1At9xq0IK

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  8038658b8d000a4a7ab6a1c3eef13e8b_JaffaCakes118
- Size
  
  1.9MB
- MD5
  
  8038658b8d000a4a7ab6a1c3eef13e8b
- SHA1
  
  5c85d65a00dd69e5cc445db975620c2e3190141f
- SHA256
  
  17d5ebc453d33388f1e5eecffd48605265b53577f7c4ebf9551fafca26e822af
- SHA512
  
  25cc24421d121842066d33c70f5f64c068c8c43bd3a5e8bc98a7919752b222f63425cd5e2849b4377da4831ceb7781712948d314fecd23734aa49f772ca9165a
- SSDEEP
  
  24576:Yam5upSxntg40rgqWFlhGl67OIJWWLFnl5iTHR65G1q/DnpNfndpkP5mHaTHR60n:tDWHbfFniD6GsVFLaDN1At9xq0IK
Score

8^/10

evasion
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2