bad2c5f252d2211e5cbcb27dc54aaff48caaf1a0d036ca970ddb7119102b7a62 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d285f671f5bc0f835a28bc227db53c24_JaffaCakes118
Size

159KB
Sample

240907-wkgm1ayfmf
MD5

d285f671f5bc0f835a28bc227db53c24
SHA1

ff086b37d5f9091421aa15b23a62dba6e05b9735
SHA256

bad2c5f252d2211e5cbcb27dc54aaff48caaf1a0d036ca970ddb7119102b7a62
SHA512

a345cc67adb0e0ef627c7eeed992ae4efb774a89e5f741ac459b2084f83766a34d87963272b681559ad58fd4f717949070a9e4162fff7646d013706a6cf434ab
SSDEEP

3072:hoJZ99E0pglREQC5i0GBgwDZ1HP5vxRtP5dITLUvknbOv8:GJZ9G8LQC6KwDfHPRtP4TIJ

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  d285f671f5bc0f835a28bc227db53c24_JaffaCakes118
- Size
  
  159KB
- MD5
  
  d285f671f5bc0f835a28bc227db53c24
- SHA1
  
  ff086b37d5f9091421aa15b23a62dba6e05b9735
- SHA256
  
  bad2c5f252d2211e5cbcb27dc54aaff48caaf1a0d036ca970ddb7119102b7a62
- SHA512
  
  a345cc67adb0e0ef627c7eeed992ae4efb774a89e5f741ac459b2084f83766a34d87963272b681559ad58fd4f717949070a9e4162fff7646d013706a6cf434ab
- SSDEEP
  
  3072:hoJZ99E0pglREQC5i0GBgwDZ1HP5vxRtP5dITLUvknbOv8:GJZ9G8LQC6KwDfHPRtP4TIJ
Score

5^/10

discovery
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2