b849a142d84a177e44b122c8c67c8c4dd07a1fc24a24693ac68637b7b9151e4b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8ac712fdccacece53aa05c225d76bd97_JaffaCakes118
Size

225KB
Sample

240811-r6nk8atgpp
MD5

8ac712fdccacece53aa05c225d76bd97
SHA1

2b2c2f789b54058e69d6d91c6d4827b7ffec602c
SHA256

b849a142d84a177e44b122c8c67c8c4dd07a1fc24a24693ac68637b7b9151e4b
SHA512

af4636513e5631f8bab8ea8ec9a48f35ccd4f31da0db041be718e63300d2b9827bc745b0bd7fe2b03d187a78c1c2cc9cc9ec8871afbd75bd1fefa42e493885aa
SSDEEP

3072:8QX+EA4yhZ32z1esbjOAP1jhrH/Nbflqd0Dtc6KXW4JtRDlvHOb9bhkiom++nrnR:8RgOAP1Nr1x5KjGaZv4BhkiBhnrwLA

Score

7^/10

aspackv2 discovery

Malware Config

Targets

- Target
  
  8ac712fdccacece53aa05c225d76bd97_JaffaCakes118
- Size
  
  225KB
- MD5
  
  8ac712fdccacece53aa05c225d76bd97
- SHA1
  
  2b2c2f789b54058e69d6d91c6d4827b7ffec602c
- SHA256
  
  b849a142d84a177e44b122c8c67c8c4dd07a1fc24a24693ac68637b7b9151e4b
- SHA512
  
  af4636513e5631f8bab8ea8ec9a48f35ccd4f31da0db041be718e63300d2b9827bc745b0bd7fe2b03d187a78c1c2cc9cc9ec8871afbd75bd1fefa42e493885aa
- SSDEEP
  
  3072:8QX+EA4yhZ32z1esbjOAP1jhrH/Nbflqd0Dtc6KXW4JtRDlvHOb9bhkiom++nrnR:8RgOAP1Nr1x5KjGaZv4BhkiBhnrwLA
Score

5^/10

discovery
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2