a992eae75383e3f1aee610326c9f2846bdbfbfb6f5c6af6f25af222b258d871e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b644f3ad9c501bc2e9fd1c0792d65864_JaffaCakes118
Size

86KB
Sample

240822-emg8wa1djp
MD5

b644f3ad9c501bc2e9fd1c0792d65864
SHA1

a9166d7878f75429d2ec5b75ccd2abd9f3f4fcbf
SHA256

a992eae75383e3f1aee610326c9f2846bdbfbfb6f5c6af6f25af222b258d871e
SHA512

116cbc7cf8344f151f93c31175a0f920e17b620ffd0f239f07928c7e6946691d9386dfb61bdd8060b1b8f7dd9f64a7511a2ff5e694ed201848ca30133392c8a8
SSDEEP

1536:+AgM2gGbArNbOawFHJpZ8GFTiiQFqkKkBYxHQzVHCle8TktaymhQYAozvI+d:+AgM2gGbArtOawFHJp6GFTU2kBYxEilN

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  Server_al-swisre.exe
- Size
  
  284KB
- MD5
  
  dd431b788e4286f3466ad3ce2bb6aadd
- SHA1
  
  b688bad0bac40ce97a7d62128a0165ca74e907dc
- SHA256
  
  da03de3c73d6d5c0802b1c883a5172844c7f916304b14ad2133e8f55b987c264
- SHA512
  
  de804b56e4ffaa4a758f59583fed19c6ee43cb0a7482fe5f74f5d535bc3afe46ca1fa805cc08a1beb3138a9a3c396991f22dba355c6bd55b3301c27bc8d03513
- SSDEEP
  
  3072:h6Lca+56U04mw49Y3r1suFiEIN1suFiEIAO1m1TPy:tzFByzFBK1m1O
Score

5^/10

discovery
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2