a5e1f8e64809f270dc74074fe10c2434109ce822088be5670e0fb313ef34147f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a915492dc52e477222f9cc02f2f5cf50_JaffaCakes118
Size

162KB
Sample

240819-b5f7raxdpc
MD5

a915492dc52e477222f9cc02f2f5cf50
SHA1

d73dfaf43bc14621e1e2f5438656dc903b9e60d0
SHA256

a5e1f8e64809f270dc74074fe10c2434109ce822088be5670e0fb313ef34147f
SHA512

084e5ed7235565d1565df095051463f785261a953f9181b2552385c106b26f03b87b5ba1a21eaa8777f28629ee202d106c94674ec94d14bce85f0dfaa7c83cfa
SSDEEP

3072:r+amVW3ha0ZM1+TWsdN516cwLCJYkjd+owTnbb:STVuha0ZM1+TWsdN3JZdIHb

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a915492dc52e477222f9cc02f2f5cf50_JaffaCakes118
- Size
  
  162KB
- MD5
  
  a915492dc52e477222f9cc02f2f5cf50
- SHA1
  
  d73dfaf43bc14621e1e2f5438656dc903b9e60d0
- SHA256
  
  a5e1f8e64809f270dc74074fe10c2434109ce822088be5670e0fb313ef34147f
- SHA512
  
  084e5ed7235565d1565df095051463f785261a953f9181b2552385c106b26f03b87b5ba1a21eaa8777f28629ee202d106c94674ec94d14bce85f0dfaa7c83cfa
- SSDEEP
  
  3072:r+amVW3ha0ZM1+TWsdN516cwLCJYkjd+owTnbb:STVuha0ZM1+TWsdN3JZdIHb
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2