d7d751166c794ef2649b311a3904a275dfb7e985ab431cbb0f79ffb10bb85dc2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0993d29a72e4a0e9e0623ec2796ae4d6_JaffaCakes118
Size

1.4MB
Sample

240624-tw47bs1glf
MD5

0993d29a72e4a0e9e0623ec2796ae4d6
SHA1

680bce24b0bdc5cb2143422f05ea454031d2ea86
SHA256

d7d751166c794ef2649b311a3904a275dfb7e985ab431cbb0f79ffb10bb85dc2
SHA512

e4d28d60aec707b0d0dc82321e74139cdac2e8d644f52feec4ccdf699c330013b1e8e630c005e3b9fa68ff0b87ef61a232d07cbc1ce8dac5913aaccd8ce0d1f8
SSDEEP

24576:464pA491QfbcxiF9NRKpdAb1PdCyzlNynSehBDKDCUCrcfNc3b:4v/917nAb1Psyzh6BWD+rcG

Score

7^/10

Malware Config

Targets

- Target
  
  0993d29a72e4a0e9e0623ec2796ae4d6_JaffaCakes118
- Size
  
  1.4MB
- MD5
  
  0993d29a72e4a0e9e0623ec2796ae4d6
- SHA1
  
  680bce24b0bdc5cb2143422f05ea454031d2ea86
- SHA256
  
  d7d751166c794ef2649b311a3904a275dfb7e985ab431cbb0f79ffb10bb85dc2
- SHA512
  
  e4d28d60aec707b0d0dc82321e74139cdac2e8d644f52feec4ccdf699c330013b1e8e630c005e3b9fa68ff0b87ef61a232d07cbc1ce8dac5913aaccd8ce0d1f8
- SSDEEP
  
  24576:464pA491QfbcxiF9NRKpdAb1PdCyzlNynSehBDKDCUCrcfNc3b:4v/917nAb1Psyzh6BWD+rcG
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2