Overview

overview

6

Static

static

3

2a441eaf24...18.exe

windows7-x64

6

2a441eaf24...18.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    2a441eaf24de5bcbdc9a259bfec9f9f5_JaffaCakes118

  • Size

    6.5MB

  • Sample

    240708-aa6cqaveja

  • MD5

    2a441eaf24de5bcbdc9a259bfec9f9f5

  • SHA1

    ad5c995228b52bf04de8405ef4b79c5a1ff908a1

  • SHA256

    a9ec268b5983aa3fedb2e8ff5ac46dfa9f650bb8a6147ea3b01419913888102f

  • SHA512

    3612818c2615fcc4ed4cf6dfc126710fbe20d2deee260d3664f59f281864a38e6f9c03de0763f1234c02213c383cd6a054b7598dca3ff99292380317b1146e41

  • SSDEEP

    98304:DtPgnJRy8rSGR2MzKJ9pDaBUAKVcArw5xpK64qZ6OAO95xbyFKiw0PICd3qa:BiHy1oOpDBmww5O6hqi4/w0wCd3

Score
6/10

Malware Config

Targets

    • Target

      2a441eaf24de5bcbdc9a259bfec9f9f5_JaffaCakes118

    • Size

      6.5MB

    • MD5

      2a441eaf24de5bcbdc9a259bfec9f9f5

    • SHA1

      ad5c995228b52bf04de8405ef4b79c5a1ff908a1

    • SHA256

      a9ec268b5983aa3fedb2e8ff5ac46dfa9f650bb8a6147ea3b01419913888102f

    • SHA512

      3612818c2615fcc4ed4cf6dfc126710fbe20d2deee260d3664f59f281864a38e6f9c03de0763f1234c02213c383cd6a054b7598dca3ff99292380317b1146e41

    • SSDEEP

      98304:DtPgnJRy8rSGR2MzKJ9pDaBUAKVcArw5xpK64qZ6OAO95xbyFKiw0PICd3qa:BiHy1oOpDBmww5O6hqi4/w0wCd3

    Score
    6/10

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks