efd0b7d447fd6bc443d6ac040346cbf178357af58f9f21f7600503cdf0f1495f | Triage

Sharing

General

Target

b54d4627a24d813f93936ab732b75a38_JaffaCakes118
Size

18KB
Sample

240821-2fcfdaxgnl
MD5

b54d4627a24d813f93936ab732b75a38
SHA1

07381717e9e3fbe289adf3069e4029192e80561b
SHA256

efd0b7d447fd6bc443d6ac040346cbf178357af58f9f21f7600503cdf0f1495f
SHA512

3e8439247e33bd954b3fa28fb3c956f6fe6a2af034dcd81ac967b98017bf5bfabaf5748beb90b9fd884bb0332acfb92ce947151471cadadeee6348c27c7a1a96
SSDEEP

384:faDF2vDOfwXP/Ql2LUbjjcFV2olSiPdRTpRUFTsvrQ:fEF2lX3c//aic3pRUFgTQ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b54d4627a24d813f93936ab732b75a38_JaffaCakes118
- Size
  
  18KB
- MD5
  
  b54d4627a24d813f93936ab732b75a38
- SHA1
  
  07381717e9e3fbe289adf3069e4029192e80561b
- SHA256
  
  efd0b7d447fd6bc443d6ac040346cbf178357af58f9f21f7600503cdf0f1495f
- SHA512
  
  3e8439247e33bd954b3fa28fb3c956f6fe6a2af034dcd81ac967b98017bf5bfabaf5748beb90b9fd884bb0332acfb92ce947151471cadadeee6348c27c7a1a96
- SSDEEP
  
  384:faDF2vDOfwXP/Ql2LUbjjcFV2olSiPdRTpRUFTsvrQ:fEF2lX3c//aic3pRUFgTQ
Score

7^/10

discovery
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2