a8fa5a1234684b839186a657ef227d6a7cd6a45ad4dfd58557e4b5205230f5ec | Triage

Submit
Reports

Overview

overview

7

Static

static

3

5a49dee4f5...18.exe

windows7-x64

7

5a49dee4f5...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

5a49dee4f5abaae6f6fa8335ed519440_JaffaCakes118
Size

286KB
Sample

240719-d1cpwazhqr
MD5

5a49dee4f5abaae6f6fa8335ed519440
SHA1

860a92e498ac7cae60a6d482cfd277cd2636861c
SHA256

a8fa5a1234684b839186a657ef227d6a7cd6a45ad4dfd58557e4b5205230f5ec
SHA512

4ef0c8e9a32e55966df57ac388f3432846fdcb6a157beda56861c3b33ef283393031885c391c1c037bebef18839e074ac065260d5dfc9eff9813943dbbb2b269
SSDEEP

6144:w44Vc34FFaiS1dfnfGdsWFXvwitoGKDSkI/RuWwVFJ1sBdA0Polj0r:74VcQzEdPfDWFXv9toGyI/RuWAFT+d7j

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

5a49dee4f5abaae6f6fa8335ed519440_JaffaCakes118.exe

Resource

win7-20240704-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

5a49dee4f5abaae6f6fa8335ed519440_JaffaCakes118.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  5a49dee4f5abaae6f6fa8335ed519440_JaffaCakes118
- Size
  
  286KB
- MD5
  
  5a49dee4f5abaae6f6fa8335ed519440
- SHA1
  
  860a92e498ac7cae60a6d482cfd277cd2636861c
- SHA256
  
  a8fa5a1234684b839186a657ef227d6a7cd6a45ad4dfd58557e4b5205230f5ec
- SHA512
  
  4ef0c8e9a32e55966df57ac388f3432846fdcb6a157beda56861c3b33ef283393031885c391c1c037bebef18839e074ac065260d5dfc9eff9813943dbbb2b269
- SSDEEP
  
  6144:w44Vc34FFaiS1dfnfGdsWFXvwitoGKDSkI/RuWwVFJ1sBdA0Polj0r:74VcQzEdPfDWFXv9toGyI/RuWAFT+d7j
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy