6c29c7170e2f2df5a7dc273bd2bc8304dd4dafd55f721b5e6a2097ed24ecb268 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8af67c1e1da3a785c0171bf2a410bec0_JaffaCakes118
Size

159KB
Sample

240811-s8hcnawcnn
MD5

8af67c1e1da3a785c0171bf2a410bec0
SHA1

a8be43390d200dce72d40c82e9b8d7e9f7aa90a6
SHA256

6c29c7170e2f2df5a7dc273bd2bc8304dd4dafd55f721b5e6a2097ed24ecb268
SHA512

646c0f99282ba389bbc3a87c458d8e34f7d67dec7062c504bcc65b0c0bf819987e3d205452041b2dca423f559f61841d229f16ba98c4483dd4f58e10a0f98cce
SSDEEP

3072:twZQ5RyoN1CAErL4X45afqiJOjA35+X/bahwWsr:tTlXEQX4gsE+XDqd

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8af67c1e1da3a785c0171bf2a410bec0_JaffaCakes118
- Size
  
  159KB
- MD5
  
  8af67c1e1da3a785c0171bf2a410bec0
- SHA1
  
  a8be43390d200dce72d40c82e9b8d7e9f7aa90a6
- SHA256
  
  6c29c7170e2f2df5a7dc273bd2bc8304dd4dafd55f721b5e6a2097ed24ecb268
- SHA512
  
  646c0f99282ba389bbc3a87c458d8e34f7d67dec7062c504bcc65b0c0bf819987e3d205452041b2dca423f559f61841d229f16ba98c4483dd4f58e10a0f98cce
- SSDEEP
  
  3072:twZQ5RyoN1CAErL4X45afqiJOjA35+X/bahwWsr:tTlXEQX4gsE+XDqd
Score

7^/10

discovery
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2