General

  • Target

    0cd38e18027da4fa19ef7e53155b6995_JaffaCakes118

  • Size

    3.9MB

  • Sample

    240625-gan7rswekn

  • MD5

    0cd38e18027da4fa19ef7e53155b6995

  • SHA1

    d620be0f573e9236f4e20cd8d442af39943059e0

  • SHA256

    42b793620ccc9b361fb627bbc381201a16e55b275446cdd466abedb8c99998b0

  • SHA512

    104c660eca8027b508998d66f925eab992a7e8384eee363b765c36de50beedb12fe2f20ef9784dcb2bcabb98da7163bddbe7f420326447569bedaabfbd5924a6

  • SSDEEP

    98304:i0NB93Q53yuQaxlCiHqORcwxDAoHa126mUsj:i0g3wWzHDc8DAoHSmUs

Score
10/10

Malware Config

Targets

    • Target

      0cd38e18027da4fa19ef7e53155b6995_JaffaCakes118

    • Size

      3.9MB

    • MD5

      0cd38e18027da4fa19ef7e53155b6995

    • SHA1

      d620be0f573e9236f4e20cd8d442af39943059e0

    • SHA256

      42b793620ccc9b361fb627bbc381201a16e55b275446cdd466abedb8c99998b0

    • SHA512

      104c660eca8027b508998d66f925eab992a7e8384eee363b765c36de50beedb12fe2f20ef9784dcb2bcabb98da7163bddbe7f420326447569bedaabfbd5924a6

    • SSDEEP

      98304:i0NB93Q53yuQaxlCiHqORcwxDAoHa126mUsj:i0g3wWzHDc8DAoHSmUs

    Score
    10/10
    • DarkVNC

      DarkVNC is a malicious version of the famous VNC software.

    • DarkVNC payload

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks