cfa7c6bf75e695ff40fc2829115332f8115dee65505ac38a2b0ac02bc8681d22 | Triage

Sharing

General

Target

681f64662233279d9ce3815d4374bd95_JaffaCakes118
Size

112KB
Sample

240723-sst2hszckc
MD5

681f64662233279d9ce3815d4374bd95
SHA1

23bc84937fcb88f5654960ce70098e64a3a6961c
SHA256

cfa7c6bf75e695ff40fc2829115332f8115dee65505ac38a2b0ac02bc8681d22
SHA512

9b7f3ca48bb315186722f92bfb6aee0f0ff2cbb697b2834fe4fcc33f44881aa27124ca98fea80f0964f056e0163677f8f6d84de18b6219e68324348764cda5d8
SSDEEP

1536:E//mQ74sibnnTGDnKhlAVVusdBISnuGuUWG4paH34uICTrgXg1bd:+eQ7TiDnenKhGVVpIStuP3rCR

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  681f64662233279d9ce3815d4374bd95_JaffaCakes118
- Size
  
  112KB
- MD5
  
  681f64662233279d9ce3815d4374bd95
- SHA1
  
  23bc84937fcb88f5654960ce70098e64a3a6961c
- SHA256
  
  cfa7c6bf75e695ff40fc2829115332f8115dee65505ac38a2b0ac02bc8681d22
- SHA512
  
  9b7f3ca48bb315186722f92bfb6aee0f0ff2cbb697b2834fe4fcc33f44881aa27124ca98fea80f0964f056e0163677f8f6d84de18b6219e68324348764cda5d8
- SSDEEP
  
  1536:E//mQ74sibnnTGDnKhlAVVusdBISnuGuUWG4paH34uICTrgXg1bd:+eQ7TiDnenKhGVVpIStuP3rCR
Score

5^/10

discovery
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2