fd3cf360871d696aeb2223d9434901a226ec16c1ec20b6e113f03e60ea6f723e | Triage

Sharing

General

Target

b4e71b2f8b364fc7c1867231c9606705_JaffaCakes118
Size

169KB
Sample

240821-y5dsyssdnl
MD5

b4e71b2f8b364fc7c1867231c9606705
SHA1

c203336e14b72dba8cfa8b81193c7f8b2889af12
SHA256

fd3cf360871d696aeb2223d9434901a226ec16c1ec20b6e113f03e60ea6f723e
SHA512

6282d206c95e1ebda7d6f1d296270d66cc986de72cf0d9f39c2e7574d7d5a98f99879d360afd294c7dd2691af90576783785f71cf0c99788025e2e899a678a94
SSDEEP

3072:swA2/eT3WpccfUZft4R9t2T83S39t0ouJeFL47dU0qQ0bG2/eNRAcAKFHA1:swAdTGDf0mk83SnwJUtb/5cxNA

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  b4e71b2f8b364fc7c1867231c9606705_JaffaCakes118
- Size
  
  169KB
- MD5
  
  b4e71b2f8b364fc7c1867231c9606705
- SHA1
  
  c203336e14b72dba8cfa8b81193c7f8b2889af12
- SHA256
  
  fd3cf360871d696aeb2223d9434901a226ec16c1ec20b6e113f03e60ea6f723e
- SHA512
  
  6282d206c95e1ebda7d6f1d296270d66cc986de72cf0d9f39c2e7574d7d5a98f99879d360afd294c7dd2691af90576783785f71cf0c99788025e2e899a678a94
- SSDEEP
  
  3072:swA2/eT3WpccfUZft4R9t2T83S39t0ouJeFL47dU0qQ0bG2/eNRAcAKFHA1:swAdTGDf0mk83SnwJUtb/5cxNA
Score

5^/10

discovery
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2