30a2a532cae3185c624d7adc0e75c3e9f9ae982b1405866a91d450898b4f4f1f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

73eaceb5c66303f766fe7b67ab169127_JaffaCakes118
Size

116KB
Sample

240726-nw32davhrq
MD5

73eaceb5c66303f766fe7b67ab169127
SHA1

c74e5be6f7abedc23fb94556255d3c801901c215
SHA256

30a2a532cae3185c624d7adc0e75c3e9f9ae982b1405866a91d450898b4f4f1f
SHA512

34797aba4ec55b2f969659126558144c8142e584d7e443f335ea888d159290f64ba5f78296854be2242790dd3ccbe05ed2430a1bb5ab00667ab5d141201a1e09
SSDEEP

1536:EYbuYf8BK8+5TZ2PXp6LYgQn5kZD6fHsn0nYd:Pf8BK8+5TYBWYT5s600

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  73eaceb5c66303f766fe7b67ab169127_JaffaCakes118
- Size
  
  116KB
- MD5
  
  73eaceb5c66303f766fe7b67ab169127
- SHA1
  
  c74e5be6f7abedc23fb94556255d3c801901c215
- SHA256
  
  30a2a532cae3185c624d7adc0e75c3e9f9ae982b1405866a91d450898b4f4f1f
- SHA512
  
  34797aba4ec55b2f969659126558144c8142e584d7e443f335ea888d159290f64ba5f78296854be2242790dd3ccbe05ed2430a1bb5ab00667ab5d141201a1e09
- SSDEEP
  
  1536:EYbuYf8BK8+5TZ2PXp6LYgQn5kZD6fHsn0nYd:Pf8BK8+5TYBWYT5s600
Score

5^/10

discovery
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2