ca06dc996e1236951531ea7c949b171ec51530d49b4355b4f0ef2f1224b71dd7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa6beee1b5d9d8b93653852f916fa1cd_JaffaCakes118
Size

293KB
Sample

240819-k6lnasyfml
MD5

aa6beee1b5d9d8b93653852f916fa1cd
SHA1

573dd01e89e701c3363cca21f3f63a40c12f3ee9
SHA256

ca06dc996e1236951531ea7c949b171ec51530d49b4355b4f0ef2f1224b71dd7
SHA512

e71b3ad0a0825b447f017d9f818685ac4c6521591be0c21af0306bf8ca11cdfa7ec99d9e6e39d3f7e58ade9d03090049796553fad7bd454f3c69b891c27a30eb
SSDEEP

6144:3yCbaW77yOA8qnHcOiO/tp8/v41ztGl2YobFUnLDv3If3kSL:bb7yMxy/j+vWu2YobFgL7s3kI

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  aa6beee1b5d9d8b93653852f916fa1cd_JaffaCakes118
- Size
  
  293KB
- MD5
  
  aa6beee1b5d9d8b93653852f916fa1cd
- SHA1
  
  573dd01e89e701c3363cca21f3f63a40c12f3ee9
- SHA256
  
  ca06dc996e1236951531ea7c949b171ec51530d49b4355b4f0ef2f1224b71dd7
- SHA512
  
  e71b3ad0a0825b447f017d9f818685ac4c6521591be0c21af0306bf8ca11cdfa7ec99d9e6e39d3f7e58ade9d03090049796553fad7bd454f3c69b891c27a30eb
- SSDEEP
  
  6144:3yCbaW77yOA8qnHcOiO/tp8/v41ztGl2YobFUnLDv3If3kSL:bb7yMxy/j+vWu2YobFgL7s3kI
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2