48321c265a6c599e9bfeae1a8bbc012effafb274a545a895c7e96ea08a9f6aa0 | Triage

Sharing

General

Target

8a198e94bd023d99c364b921b58af7ce_JaffaCakes118
Size

367KB
Sample

240811-m226la1bkc
MD5

8a198e94bd023d99c364b921b58af7ce
SHA1

efd094efd0945a1cb6cef2539dc6ae870f61c8cf
SHA256

48321c265a6c599e9bfeae1a8bbc012effafb274a545a895c7e96ea08a9f6aa0
SHA512

b5cbc6206fe34b6ddc02e6beb983390924084bfded09f5fe5506845bf2648c908fa43e45aba811a96c01fd9c994f07702124e8d38b9101d4282c202194a1bbb5
SSDEEP

6144:xla0Ra8P4asaeJW/Bg5E4mxIuWxuefAvCTGgG9AM+n5yhn6QqRZUSk2GO+h5r9Xm:/5RaKDyW5gmxCtAKTG3H+n5yh6QkUP9s

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  8a198e94bd023d99c364b921b58af7ce_JaffaCakes118
- Size
  
  367KB
- MD5
  
  8a198e94bd023d99c364b921b58af7ce
- SHA1
  
  efd094efd0945a1cb6cef2539dc6ae870f61c8cf
- SHA256
  
  48321c265a6c599e9bfeae1a8bbc012effafb274a545a895c7e96ea08a9f6aa0
- SHA512
  
  b5cbc6206fe34b6ddc02e6beb983390924084bfded09f5fe5506845bf2648c908fa43e45aba811a96c01fd9c994f07702124e8d38b9101d4282c202194a1bbb5
- SSDEEP
  
  6144:xla0Ra8P4asaeJW/Bg5E4mxIuWxuefAvCTGgG9AM+n5yhn6QqRZUSk2GO+h5r9Xm:/5RaKDyW5gmxCtAKTG3H+n5yh6QkUP9s
Score

5^/10

discovery
- Suspicious use of NtSetInformationThreadHideFromDebugger
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2