8ae7ef926e745ef5bca777ead1ad926bbe0ce84cf6ec4ac567235681f00e7d85 | Triage

Sharing

General

Target

3c40fe6b00ba54b544a1096cfdcbe4b6_JaffaCakes118
Size

418KB
Sample

240712-gxkg4atfjc
MD5

3c40fe6b00ba54b544a1096cfdcbe4b6
SHA1

2689cc65e0503573cfd8ff6fd0ea172c12874de1
SHA256

8ae7ef926e745ef5bca777ead1ad926bbe0ce84cf6ec4ac567235681f00e7d85
SHA512

c4a34657213f1739d44f23413d3782aa3e79e92e5e62ef6cf5c5938aac9044d404d4e8de5a117faab6ff4f7b9fe8ef0ee12512cf85f188b23f2a7d025814bfbf
SSDEEP

12288:VqHtCe8K/lGRgOUqmq9kR6lhKX2XwXrFzxdOLAnSNaA2RV4:QHgK/cRgOnmq9g67IQQ/Y

Score

6^/10

Malware Config

Targets

- Target
  
  3c40fe6b00ba54b544a1096cfdcbe4b6_JaffaCakes118
- Size
  
  418KB
- MD5
  
  3c40fe6b00ba54b544a1096cfdcbe4b6
- SHA1
  
  2689cc65e0503573cfd8ff6fd0ea172c12874de1
- SHA256
  
  8ae7ef926e745ef5bca777ead1ad926bbe0ce84cf6ec4ac567235681f00e7d85
- SHA512
  
  c4a34657213f1739d44f23413d3782aa3e79e92e5e62ef6cf5c5938aac9044d404d4e8de5a117faab6ff4f7b9fe8ef0ee12512cf85f188b23f2a7d025814bfbf
- SSDEEP
  
  12288:VqHtCe8K/lGRgOUqmq9kR6lhKX2XwXrFzxdOLAnSNaA2RV4:QHgK/cRgOnmq9g67IQQ/Y
Score

6^/10
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2