956a33f27f1e391e7a85a276604c51c048118ad5d0f14e74771e543335e580b1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a2845e0384ffcdac82da3538b588a8fb_JaffaCakes118
Size

168KB
Sample

240817-pk8cdsvfla
MD5

a2845e0384ffcdac82da3538b588a8fb
SHA1

1aa6feb97493b68cd8e31e1cf5e6b4dc3a3fa5ad
SHA256

956a33f27f1e391e7a85a276604c51c048118ad5d0f14e74771e543335e580b1
SHA512

797709825beff76427c62ee2d16f129620e961967ebb7e2a7e5860233f60dc7302c67e7c1e83f1211c2598582ef4d431a45da7a176a19b61af202ff246dbfb15
SSDEEP

3072:ou6ayYMCc+rKlsVOIFEJ46wWKnlyY8+uXNFLKQ0:NNsCc+WlOOIF8u4+mFLL0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a2845e0384ffcdac82da3538b588a8fb_JaffaCakes118
- Size
  
  168KB
- MD5
  
  a2845e0384ffcdac82da3538b588a8fb
- SHA1
  
  1aa6feb97493b68cd8e31e1cf5e6b4dc3a3fa5ad
- SHA256
  
  956a33f27f1e391e7a85a276604c51c048118ad5d0f14e74771e543335e580b1
- SHA512
  
  797709825beff76427c62ee2d16f129620e961967ebb7e2a7e5860233f60dc7302c67e7c1e83f1211c2598582ef4d431a45da7a176a19b61af202ff246dbfb15
- SSDEEP
  
  3072:ou6ayYMCc+rKlsVOIFEJ46wWKnlyY8+uXNFLKQ0:NNsCc+WlOOIF8u4+mFLL0
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2