fc1d6d5092cc2892b67a97d5e4f96d3552e24ee283f93301f1076f08e5df8254 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

88a0dee6c0af5ed1cb3ed6f3b7c7c540_JaffaCakes118
Size

572KB
Sample

240811-cvn1aa1akj
MD5

88a0dee6c0af5ed1cb3ed6f3b7c7c540
SHA1

94b42d0e637d1f8f0932ef607ce0b9d681ee95c4
SHA256

fc1d6d5092cc2892b67a97d5e4f96d3552e24ee283f93301f1076f08e5df8254
SHA512

bc1240433553a598a5922da432f3a5afed4289ab52564b3e3bee21165bb7fcd700ce716056e50657b48ce0e8957d9ba438200293b2ec02566d64ad3dff55cc15
SSDEEP

12288:SJy6u9xX5I+8OeHRkfKPpCLl1voP6oyUuPB8u:S06u9x39fKkLhUu5

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  88a0dee6c0af5ed1cb3ed6f3b7c7c540_JaffaCakes118
- Size
  
  572KB
- MD5
  
  88a0dee6c0af5ed1cb3ed6f3b7c7c540
- SHA1
  
  94b42d0e637d1f8f0932ef607ce0b9d681ee95c4
- SHA256
  
  fc1d6d5092cc2892b67a97d5e4f96d3552e24ee283f93301f1076f08e5df8254
- SHA512
  
  bc1240433553a598a5922da432f3a5afed4289ab52564b3e3bee21165bb7fcd700ce716056e50657b48ce0e8957d9ba438200293b2ec02566d64ad3dff55cc15
- SSDEEP
  
  12288:SJy6u9xX5I+8OeHRkfKPpCLl1voP6oyUuPB8u:S06u9x39fKkLhUu5
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2