c0bc875cb0df2f3d7f9db3aea7e469c95bdbf7cc2c503a1597b2fe17788a395c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c85995584157e5a67274fc8699bc92c7_JaffaCakes118
Size

34KB
Sample

240829-gz18maxdlg
MD5

c85995584157e5a67274fc8699bc92c7
SHA1

3007bbf45a24adab1652c208c40e336d14874d23
SHA256

c0bc875cb0df2f3d7f9db3aea7e469c95bdbf7cc2c503a1597b2fe17788a395c
SHA512

f641042840c1e0d62aea756899b747b82eea717d4d7db848d8c7ea343ca85279132eadda568fd2b0dc9227e6da4fef59a9eca2f0fb7419b54ed5678dce9983fd
SSDEEP

768:ZowMy3ITfKmuOQEgSdsT6bjhyG/tvAt/Uoa0JyGjj18mu0mFWM:1VITimuNEgJOFykvw8ohJzdu0mFW

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c85995584157e5a67274fc8699bc92c7_JaffaCakes118
- Size
  
  34KB
- MD5
  
  c85995584157e5a67274fc8699bc92c7
- SHA1
  
  3007bbf45a24adab1652c208c40e336d14874d23
- SHA256
  
  c0bc875cb0df2f3d7f9db3aea7e469c95bdbf7cc2c503a1597b2fe17788a395c
- SHA512
  
  f641042840c1e0d62aea756899b747b82eea717d4d7db848d8c7ea343ca85279132eadda568fd2b0dc9227e6da4fef59a9eca2f0fb7419b54ed5678dce9983fd
- SSDEEP
  
  768:ZowMy3ITfKmuOQEgSdsT6bjhyG/tvAt/Uoa0JyGjj18mu0mFWM:1VITimuNEgJOFykvw8ohJzdu0mFW
Score

7^/10

discovery
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2