1c6d8bd6d540bf81b4811f65c5285ed0a89d96957f54ff9c245c9671c5662df9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5d27c250a7d126881cfc0619f586ad18_JaffaCakes118
Size

194KB
Sample

240719-w6nnfatgqk
MD5

5d27c250a7d126881cfc0619f586ad18
SHA1

5d6f72f6fcb8da23183355239aa7d21faabdcb89
SHA256

1c6d8bd6d540bf81b4811f65c5285ed0a89d96957f54ff9c245c9671c5662df9
SHA512

b350ccbf8456c09eb5023b4dd8fdafea56f07f83ac61bd0b1557fac8516eb7864482460f91cd3c951c9a05d668143359e898324b01978c6685ca8117f02cd71e
SSDEEP

3072:TggMoWVd1hiMu8dJDJDh/FZ9ZjAqpGI5pQoVkj5T6kQ80RXuJSVK7Q7YcKcENX:TvWVPhiKLJtv/jAqp976tk80RuJHjlX

Score

5^/10

Malware Config

Targets

- Target
  
  5d27c250a7d126881cfc0619f586ad18_JaffaCakes118
- Size
  
  194KB
- MD5
  
  5d27c250a7d126881cfc0619f586ad18
- SHA1
  
  5d6f72f6fcb8da23183355239aa7d21faabdcb89
- SHA256
  
  1c6d8bd6d540bf81b4811f65c5285ed0a89d96957f54ff9c245c9671c5662df9
- SHA512
  
  b350ccbf8456c09eb5023b4dd8fdafea56f07f83ac61bd0b1557fac8516eb7864482460f91cd3c951c9a05d668143359e898324b01978c6685ca8117f02cd71e
- SSDEEP
  
  3072:TggMoWVd1hiMu8dJDJDh/FZ9ZjAqpGI5pQoVkj5T6kQ80RXuJSVK7Q7YcKcENX:TvWVPhiKLJtv/jAqp976tk80RuJHjlX
Score

5^/10
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2