c6fc02bc08563d6f3d495e8486d195d1e33ab4bc2fd5c405b240b159affbe5f2 | Triage

Sharing

General

Target

aa062b19c72004df89e73a362c5c1f72_JaffaCakes118
Size

1.1MB
Sample

240819-hqavrazejg
MD5

aa062b19c72004df89e73a362c5c1f72
SHA1

7a527a33f3ded1ec9d401633672b8b321e55f825
SHA256

c6fc02bc08563d6f3d495e8486d195d1e33ab4bc2fd5c405b240b159affbe5f2
SHA512

6e4cc382af710d342550a641db51fc8add8d658d4a6320fd405383b3f7117498b0af14972c8ba794fa653c95650810451dfec02ef3e2711b02ab629507ee9db0
SSDEEP

12288:d/dAqScIFfRCF5gZWg+s/vfqRTvmKMkNQ84oSByYMRBLewngb/RAgrFo/umM/Z8:d/CqkFTog+sfqgXCQ8LqZw6/ZF0A8

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  aa062b19c72004df89e73a362c5c1f72_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  aa062b19c72004df89e73a362c5c1f72
- SHA1
  
  7a527a33f3ded1ec9d401633672b8b321e55f825
- SHA256
  
  c6fc02bc08563d6f3d495e8486d195d1e33ab4bc2fd5c405b240b159affbe5f2
- SHA512
  
  6e4cc382af710d342550a641db51fc8add8d658d4a6320fd405383b3f7117498b0af14972c8ba794fa653c95650810451dfec02ef3e2711b02ab629507ee9db0
- SSDEEP
  
  12288:d/dAqScIFfRCF5gZWg+s/vfqRTvmKMkNQ84oSByYMRBLewngb/RAgrFo/umM/Z8:d/CqkFTog+sfqgXCQ8LqZw6/ZF0A8
Score

5^/10

discovery
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2