b6dd1931da3d7fe0cbc6a5b18dbd0fb7709c9c90591df7f857f2bbcffe496cff | Triage

Sharing

General

Target

a554c50f63ec0e2c2324ed170e424dd1_JaffaCakes118
Size

39KB
Sample

240818-erhefaxenr
MD5

a554c50f63ec0e2c2324ed170e424dd1
SHA1

143268cf1e770ff568d625028168f4c881e3899c
SHA256

b6dd1931da3d7fe0cbc6a5b18dbd0fb7709c9c90591df7f857f2bbcffe496cff
SHA512

303a2552ef4b513c83e89b23035e37f44e8969e9dfb0587f73fb13ad708267ffef590284dc8b25144449d936c3c26b2a34337c3e2ce446255b9706edca39422b
SSDEEP

768:kEgyqpvz3TSNLyNpKVzpLGubybuqhP3sySUOjvbEu0Y0kpv38VW5m:fgyqhz3TSNLKOz5RbyJPXM4XY0kVsVh

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a554c50f63ec0e2c2324ed170e424dd1_JaffaCakes118
- Size
  
  39KB
- MD5
  
  a554c50f63ec0e2c2324ed170e424dd1
- SHA1
  
  143268cf1e770ff568d625028168f4c881e3899c
- SHA256
  
  b6dd1931da3d7fe0cbc6a5b18dbd0fb7709c9c90591df7f857f2bbcffe496cff
- SHA512
  
  303a2552ef4b513c83e89b23035e37f44e8969e9dfb0587f73fb13ad708267ffef590284dc8b25144449d936c3c26b2a34337c3e2ce446255b9706edca39422b
- SSDEEP
  
  768:kEgyqpvz3TSNLyNpKVzpLGubybuqhP3sySUOjvbEu0Y0kpv38VW5m:fgyqhz3TSNLKOz5RbyJPXM4XY0kVsVh
Score

7^/10

discovery
- Drops startup file
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2