f6b1ea3687ea6de26473757451a6b15b7fd3d3b87bea49bcfa996095c8f12e95 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8d94b5447d85ea0d72c1586ff4240188_JaffaCakes118
Size

108KB
Sample

240812-gpl1ysyarj
MD5

8d94b5447d85ea0d72c1586ff4240188
SHA1

c29f5ae385d23ccd2e189b3b40219a3d2302e350
SHA256

f6b1ea3687ea6de26473757451a6b15b7fd3d3b87bea49bcfa996095c8f12e95
SHA512

3ab687abab03beffd6f6752c0b9780c739220cab8acf930d5de68739b43c5ea4ca1443b19755f9eda201e837f824b6fe5ab90a3534117c9b2da65801e64d4434
SSDEEP

1536:HC5/OD58p79WVLR4VElFpZOM0aedqGRSVqwoIdA4nkwUE:H09p7gVLRBp02ZGgVqCA4kXE

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8d94b5447d85ea0d72c1586ff4240188_JaffaCakes118
- Size
  
  108KB
- MD5
  
  8d94b5447d85ea0d72c1586ff4240188
- SHA1
  
  c29f5ae385d23ccd2e189b3b40219a3d2302e350
- SHA256
  
  f6b1ea3687ea6de26473757451a6b15b7fd3d3b87bea49bcfa996095c8f12e95
- SHA512
  
  3ab687abab03beffd6f6752c0b9780c739220cab8acf930d5de68739b43c5ea4ca1443b19755f9eda201e837f824b6fe5ab90a3534117c9b2da65801e64d4434
- SSDEEP
  
  1536:HC5/OD58p79WVLR4VElFpZOM0aedqGRSVqwoIdA4nkwUE:H09p7gVLRBp02ZGgVqCA4kXE
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2