a3a8e40ab261743ed0062a10e413ce2abd34323f5a56e6d0eb6cb58ba7201111 | Triage

Sharing

General

Target

a9ec9bc14ce437299d3a5db98e2b877d_JaffaCakes118
Size

457KB
Sample

240819-g38rwaydlf
MD5

a9ec9bc14ce437299d3a5db98e2b877d
SHA1

b8c078941bf23409eff4be0adcd2b677e6c5a3cf
SHA256

a3a8e40ab261743ed0062a10e413ce2abd34323f5a56e6d0eb6cb58ba7201111
SHA512

3d53d6cd733c61d1a7fb318e9d5d16466ea94ee5740305e61d5434723fe8258880d8d5d852be985f6af66b717063bb1f787a58edbea0086dcc8d4308e9bb45fc
SSDEEP

12288:Uw4CBYmPwys9XEfNaroH/BFCGYY42joc+7r:DBrP0ySNGYYN/6r

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  a9ec9bc14ce437299d3a5db98e2b877d_JaffaCakes118
- Size
  
  457KB
- MD5
  
  a9ec9bc14ce437299d3a5db98e2b877d
- SHA1
  
  b8c078941bf23409eff4be0adcd2b677e6c5a3cf
- SHA256
  
  a3a8e40ab261743ed0062a10e413ce2abd34323f5a56e6d0eb6cb58ba7201111
- SHA512
  
  3d53d6cd733c61d1a7fb318e9d5d16466ea94ee5740305e61d5434723fe8258880d8d5d852be985f6af66b717063bb1f787a58edbea0086dcc8d4308e9bb45fc
- SSDEEP
  
  12288:Uw4CBYmPwys9XEfNaroH/BFCGYY42joc+7r:DBrP0ySNGYYN/6r
Score

5^/10

discovery
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2