ed3a137bf56798be0e08bcbc613a8b27411cb161ab1355c53b8570ed8bcf5392 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a3fc90beb362dc9642215732b1a48ec0_JaffaCakes118
Size

142KB
Sample

240817-y23mxaxdql
MD5

a3fc90beb362dc9642215732b1a48ec0
SHA1

68140291a2672cfc4ad3b981ea61893903f3f285
SHA256

ed3a137bf56798be0e08bcbc613a8b27411cb161ab1355c53b8570ed8bcf5392
SHA512

64db54f593d3779e01163200762b5389ce4dfe129c6f63801990bcf376375cf352a91953feca48d3537c082d4dadf88ff750161382aefdca55affd2e9e3d6eaa
SSDEEP

3072:1OsRShG9fmuWpCoiSNnBhe9yTPWp/VQxOMMPLSHGz:7RShGlWpfbZsyTP7IMQ+HG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a3fc90beb362dc9642215732b1a48ec0_JaffaCakes118
- Size
  
  142KB
- MD5
  
  a3fc90beb362dc9642215732b1a48ec0
- SHA1
  
  68140291a2672cfc4ad3b981ea61893903f3f285
- SHA256
  
  ed3a137bf56798be0e08bcbc613a8b27411cb161ab1355c53b8570ed8bcf5392
- SHA512
  
  64db54f593d3779e01163200762b5389ce4dfe129c6f63801990bcf376375cf352a91953feca48d3537c082d4dadf88ff750161382aefdca55affd2e9e3d6eaa
- SSDEEP
  
  3072:1OsRShG9fmuWpCoiSNnBhe9yTPWp/VQxOMMPLSHGz:7RShGlWpfbZsyTP7IMQ+HG
Score

7^/10

discovery
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2