680ceed3805efe66b65d18c89ace924fe6ec7e9b702c42b42ca2f01028090a68 | Triage

Sharing

General

Target

71597a33103d705c6e8cfffdd395e334_JaffaCakes118
Size

220KB
Sample

240725-1kh82szblh
MD5

71597a33103d705c6e8cfffdd395e334
SHA1

e30440cdb51d02f4b51767d50e1d94f67c030029
SHA256

680ceed3805efe66b65d18c89ace924fe6ec7e9b702c42b42ca2f01028090a68
SHA512

b0056368b951a7959fc88738bf53ee93d2b2783e5a29a3b401ef1eebde10c0065fa811f1ca6d0e3ec526769f265069ab71e510ea0451623bf418fe78eeed3f62
SSDEEP

6144:YIPmyh1z+qXc8vj/5lFgR19rONekPCR0FARivInAgQEiwt58QQ:YIPmyh1q6cK+RTOIWtFjIAutL

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  71597a33103d705c6e8cfffdd395e334_JaffaCakes118
- Size
  
  220KB
- MD5
  
  71597a33103d705c6e8cfffdd395e334
- SHA1
  
  e30440cdb51d02f4b51767d50e1d94f67c030029
- SHA256
  
  680ceed3805efe66b65d18c89ace924fe6ec7e9b702c42b42ca2f01028090a68
- SHA512
  
  b0056368b951a7959fc88738bf53ee93d2b2783e5a29a3b401ef1eebde10c0065fa811f1ca6d0e3ec526769f265069ab71e510ea0451623bf418fe78eeed3f62
- SSDEEP
  
  6144:YIPmyh1z+qXc8vj/5lFgR19rONekPCR0FARivInAgQEiwt58QQ:YIPmyh1q6cK+RTOIWtFjIAutL
Score

5^/10

discovery
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2