mimikatz | 75a9eaac69de6320073f3efc138df92dff21360b4f377e0e951e22085bc4787f | Triage

Submit
Reports

Overview

overview

Static

static

3

af9c2a14ac...18.exe

windows7-x64

af9c2a14ac...18.exe

windows10-2004-x64

Sharing

General

Target

af9c2a14ace680f056d23e2f5c16964d_JaffaCakes118
Size

753KB
Sample

240820-ryy2zs1fjn
MD5

af9c2a14ace680f056d23e2f5c16964d
SHA1

37a24b202a3932f8e723bd29909395c07dfdcbeb
SHA256

75a9eaac69de6320073f3efc138df92dff21360b4f377e0e951e22085bc4787f
SHA512

bedec8539f6e183740ca25c0a4bc38ee3f6fb4ffc32cd952ef50f4422182dede16bc8b3dedefaf8efaea244bf1abbc63d823d10e657d2a092a5e368c934aa989
SSDEEP

12288:OZa8Hq8xXV4o5meo/ohjvfndGuGJkdQoIrQMJR52IO4n9enNYozj+J/ajcoXWnk:OI8vxFX5iudjPK80RUxNZzW/aVGk

Score

10^/10

mimikatz

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

af9c2a14ace680f056d23e2f5c16964d_JaffaCakes118.exe

Resource

win7-20240704-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

af9c2a14ace680f056d23e2f5c16964d_JaffaCakes118.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  af9c2a14ace680f056d23e2f5c16964d_JaffaCakes118
- Size
  
  753KB
- MD5
  
  af9c2a14ace680f056d23e2f5c16964d
- SHA1
  
  37a24b202a3932f8e723bd29909395c07dfdcbeb
- SHA256
  
  75a9eaac69de6320073f3efc138df92dff21360b4f377e0e951e22085bc4787f
- SHA512
  
  bedec8539f6e183740ca25c0a4bc38ee3f6fb4ffc32cd952ef50f4422182dede16bc8b3dedefaf8efaea244bf1abbc63d823d10e657d2a092a5e368c934aa989
- SSDEEP
  
  12288:OZa8Hq8xXV4o5meo/ohjvfndGuGJkdQoIrQMJR52IO4n9enNYozj+J/ajcoXWnk:OI8vxFX5iudjPK80RUxNZzW/aVGk
Score

10^/10

mimikatz
- Mimikatz
  mimikatz is an open source tool to dump credentials on Windows.
  mimikatz
- mimikatz is an open source tool to dump credentials on Windows
- Suspicious use of NtCreateThreadExHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy