5af99867dbbccbc655ceac0f7535d7983c707fbcb54287ba75c9e8e4b0488bb2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d4b5b8fa8f784b73ce3ef9619640be2a_JaffaCakes118
Size

534KB
Sample

240908-s8zxpswhpc
MD5

d4b5b8fa8f784b73ce3ef9619640be2a
SHA1

3bf62a037bf2ce6534ceb31b9c89f76508b35ce0
SHA256

5af99867dbbccbc655ceac0f7535d7983c707fbcb54287ba75c9e8e4b0488bb2
SHA512

c884de66d4b71994dea891586cd8de0ab7ebd91e7d329d9359234d6b8403307e4470b96c007b3929d88d3be68170f0090e41c80ecf1562b9bb31c69d8dc8f529
SSDEEP

12288:uRZYA5Tr+ATaRQO0qdQ4Mu2GRaWNI9xmdLxN2wJ86:u7zF+OaRQu2JWfT

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  d4b5b8fa8f784b73ce3ef9619640be2a_JaffaCakes118
- Size
  
  534KB
- MD5
  
  d4b5b8fa8f784b73ce3ef9619640be2a
- SHA1
  
  3bf62a037bf2ce6534ceb31b9c89f76508b35ce0
- SHA256
  
  5af99867dbbccbc655ceac0f7535d7983c707fbcb54287ba75c9e8e4b0488bb2
- SHA512
  
  c884de66d4b71994dea891586cd8de0ab7ebd91e7d329d9359234d6b8403307e4470b96c007b3929d88d3be68170f0090e41c80ecf1562b9bb31c69d8dc8f529
- SSDEEP
  
  12288:uRZYA5Tr+ATaRQO0qdQ4Mu2GRaWNI9xmdLxN2wJ86:u7zF+OaRQu2JWfT
Score

5^/10

discovery
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2