b2a920ad7b8daa26b658f833584b9fa1b1461f815fa63ad8f59ae569fec1daa6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a858397d5b589ddc6378eb727f22bac3_JaffaCakes118
Size

963KB
Sample

240818-1nkahszarj
MD5

a858397d5b589ddc6378eb727f22bac3
SHA1

5c893aca4cb1be2e7c37f821c662053c79764f92
SHA256

b2a920ad7b8daa26b658f833584b9fa1b1461f815fa63ad8f59ae569fec1daa6
SHA512

79de4e7bca9890f479f3ec0bd75bd967190810ae80afeba0d9c8ce4ff989337c6674e5569e1026138dac58f93f81f5d7d4c3a4441de637e6362583466a54cd4a
SSDEEP

12288:Tiq7yNed06uo7Wri1iZeWKCn+vJendUbNH14A+YuNI01pkZQ/:Gq7yNed0BFn+vJhNItb1yZQ/

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  a858397d5b589ddc6378eb727f22bac3_JaffaCakes118
- Size
  
  963KB
- MD5
  
  a858397d5b589ddc6378eb727f22bac3
- SHA1
  
  5c893aca4cb1be2e7c37f821c662053c79764f92
- SHA256
  
  b2a920ad7b8daa26b658f833584b9fa1b1461f815fa63ad8f59ae569fec1daa6
- SHA512
  
  79de4e7bca9890f479f3ec0bd75bd967190810ae80afeba0d9c8ce4ff989337c6674e5569e1026138dac58f93f81f5d7d4c3a4441de637e6362583466a54cd4a
- SSDEEP
  
  12288:Tiq7yNed06uo7Wri1iZeWKCn+vJendUbNH14A+YuNI01pkZQ/:Gq7yNed0BFn+vJhNItb1yZQ/
Score

5^/10

discovery
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2