f2868c605186dc00fb9dbc7969a7ae5777cee7555f342684e9c5d42741b9ce44 | Triage

Sharing

General

Target

cf6ce2b5ef4ea17c465fce9e9361e518_JaffaCakes118
Size

768KB
Sample

240906-ndq9vstfqg
MD5

cf6ce2b5ef4ea17c465fce9e9361e518
SHA1

e3e331230e957c8085a05c0e97ea539ce057dff6
SHA256

f2868c605186dc00fb9dbc7969a7ae5777cee7555f342684e9c5d42741b9ce44
SHA512

4c4eacfec79c1cec555d349b36646a650dd8e4a80fa40bcc0e8296a20b0210a361e33d00c46b449e2584f65b35d8ca7cdd607425a57b3cb6a331f0f9be7d5a66
SSDEEP

3072:ID+FYdNtKonvVIm63kvuZd5JFJHwxejOyKfSPG5cDtCIeIhnvSK8f:61JIn3kWdDwMjDYSPGiDWII7

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  cf6ce2b5ef4ea17c465fce9e9361e518_JaffaCakes118
- Size
  
  768KB
- MD5
  
  cf6ce2b5ef4ea17c465fce9e9361e518
- SHA1
  
  e3e331230e957c8085a05c0e97ea539ce057dff6
- SHA256
  
  f2868c605186dc00fb9dbc7969a7ae5777cee7555f342684e9c5d42741b9ce44
- SHA512
  
  4c4eacfec79c1cec555d349b36646a650dd8e4a80fa40bcc0e8296a20b0210a361e33d00c46b449e2584f65b35d8ca7cdd607425a57b3cb6a331f0f9be7d5a66
- SSDEEP
  
  3072:ID+FYdNtKonvVIm63kvuZd5JFJHwxejOyKfSPG5cDtCIeIhnvSK8f:61JIn3kWdDwMjDYSPGiDWII7
Score

5^/10

discovery
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2