1e7964e2e33b29900ce46843efdc77e1d5b19ceb0616929993e48a44ed58a3fc | Triage

Sharing

General

Target

640ed52adac98a77c8ce16228b659824_JaffaCakes118
Size

190KB
Sample

240722-vrh9qsxhnh
MD5

640ed52adac98a77c8ce16228b659824
SHA1

f7a78643346f50fe64af76ad67fef7771bd2b19e
SHA256

1e7964e2e33b29900ce46843efdc77e1d5b19ceb0616929993e48a44ed58a3fc
SHA512

4b98ce7e4a24bb15d052b22b9cd9b34b7434e9a75ef8a30b22456a3266c9ce22255a1a8be6663ed131693b1cd8edeed1bdd35759b7974d1c44c02bb115e209d9
SSDEEP

3072:+z8qsoIDKoNKs2JDEafxaErMefDtwaPePFdEAHUIR+yrTwbi0+CY:wgdj52JDPxaCMexwa2t2AHp+WTw

Score

7^/10

Malware Config

Targets

- Target
  
  640ed52adac98a77c8ce16228b659824_JaffaCakes118
- Size
  
  190KB
- MD5
  
  640ed52adac98a77c8ce16228b659824
- SHA1
  
  f7a78643346f50fe64af76ad67fef7771bd2b19e
- SHA256
  
  1e7964e2e33b29900ce46843efdc77e1d5b19ceb0616929993e48a44ed58a3fc
- SHA512
  
  4b98ce7e4a24bb15d052b22b9cd9b34b7434e9a75ef8a30b22456a3266c9ce22255a1a8be6663ed131693b1cd8edeed1bdd35759b7974d1c44c02bb115e209d9
- SSDEEP
  
  3072:+z8qsoIDKoNKs2JDEafxaErMefDtwaPePFdEAHUIR+yrTwbi0+CY:wgdj52JDPxaCMexwa2t2AHp+WTw
Score

7^/10
- Uses the VBS compiler for execution
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2