29743e508bb65a8e0badaaaf1523f3d17be3f748c19a98deb5be82f14ea23a87 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b616ae93729557603c640c86d1f15cfc_JaffaCakes118
Size

199KB
Sample

240822-dejlasyelm
MD5

b616ae93729557603c640c86d1f15cfc
SHA1

5cd2a14e91bfd8af62fb8797e130ac2921f6c270
SHA256

29743e508bb65a8e0badaaaf1523f3d17be3f748c19a98deb5be82f14ea23a87
SHA512

ae6f60643d5f9d6e2a4afce9df33eb6eb5a718240b3b72a2dd203932435f2344b11181b99e6d0452787de5b73acccd29255308141ca5bb4455619e257328c321
SSDEEP

6144:OPTyCyIxCkclTf4pFGuQMMeZGVUPE++RC4q:OvyiNafvMo2+RC

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  b616ae93729557603c640c86d1f15cfc_JaffaCakes118
- Size
  
  199KB
- MD5
  
  b616ae93729557603c640c86d1f15cfc
- SHA1
  
  5cd2a14e91bfd8af62fb8797e130ac2921f6c270
- SHA256
  
  29743e508bb65a8e0badaaaf1523f3d17be3f748c19a98deb5be82f14ea23a87
- SHA512
  
  ae6f60643d5f9d6e2a4afce9df33eb6eb5a718240b3b72a2dd203932435f2344b11181b99e6d0452787de5b73acccd29255308141ca5bb4455619e257328c321
- SSDEEP
  
  6144:OPTyCyIxCkclTf4pFGuQMMeZGVUPE++RC4q:OvyiNafvMo2+RC
Score

5^/10

discovery
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2