760743ec18e1abe1da7d920cf2c80a40082366f31f0f969d4c027249e04d628d | Triage

Sharing

General

Target

3f11daab7b96644ab6d28c23feb99071_JaffaCakes118
Size

334KB
Sample

240712-13enkssdpp
MD5

3f11daab7b96644ab6d28c23feb99071
SHA1

9e9db5c96dc6452611005277514ac127929de96a
SHA256

760743ec18e1abe1da7d920cf2c80a40082366f31f0f969d4c027249e04d628d
SHA512

faef9098b2d1259c8e5dbf65107773f0d443c7c3cb02b09fd57bd9f3bf485efa89141ed291d079779d172333dbbc668af858b4c4e2ac9435c476b36d9a8645e9
SSDEEP

6144:8hioN3UiOJro7HnXDEchhr1iG0XEi6FnaMr/jABl387z:8hio5U3hmXDEckxEi6FnZrUBK

Score

10^/10

Malware Config

Extracted

Credentials

Protocol: ftp
Host:
ftp.tripod.com
Port:
21
Username:
onthelinux
Password:
741852abc

Targets

- Target
  
  3f11daab7b96644ab6d28c23feb99071_JaffaCakes118
- Size
  
  334KB
- MD5
  
  3f11daab7b96644ab6d28c23feb99071
- SHA1
  
  9e9db5c96dc6452611005277514ac127929de96a
- SHA256
  
  760743ec18e1abe1da7d920cf2c80a40082366f31f0f969d4c027249e04d628d
- SHA512
  
  faef9098b2d1259c8e5dbf65107773f0d443c7c3cb02b09fd57bd9f3bf485efa89141ed291d079779d172333dbbc668af858b4c4e2ac9435c476b36d9a8645e9
- SSDEEP
  
  6144:8hioN3UiOJro7HnXDEchhr1iG0XEi6FnaMr/jABl387z:8hio5U3hmXDEckxEi6FnZrUBK
Score

10^/10
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2