General

  • Target

    83850f88820b6e7c8e105cba0744a841_JaffaCakes118

  • Size

    31KB

  • Sample

    240809-zpdnpaydlr

  • MD5

    83850f88820b6e7c8e105cba0744a841

  • SHA1

    3f529657a80af53221b9a96e5dc4c6be0c663094

  • SHA256

    0a2246a7a3beeb8d95825121e544ed2bb855220475ab972003232d2af12782a4

  • SHA512

    1a91dc484cc80411188fb4ba9242e412ee98753918264b62e56b3bb91f3312f811f6a5cfb7793e706a2d044d4313115d1be41890552095468808c53fb8103cfd

  • SSDEEP

    384:k1GVhNN6ISrC4CFHzmjT7t2hIsr9qN7MbnHcGd4P3:k1dDMzCTerVciw

Score
10/10

Malware Config

Extracted

Family

gozi

Targets

    • Target

      83850f88820b6e7c8e105cba0744a841_JaffaCakes118

    • Size

      31KB

    • MD5

      83850f88820b6e7c8e105cba0744a841

    • SHA1

      3f529657a80af53221b9a96e5dc4c6be0c663094

    • SHA256

      0a2246a7a3beeb8d95825121e544ed2bb855220475ab972003232d2af12782a4

    • SHA512

      1a91dc484cc80411188fb4ba9242e412ee98753918264b62e56b3bb91f3312f811f6a5cfb7793e706a2d044d4313115d1be41890552095468808c53fb8103cfd

    • SSDEEP

      384:k1GVhNN6ISrC4CFHzmjT7t2hIsr9qN7MbnHcGd4P3:k1dDMzCTerVciw

    Score
    5/10
    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks