487eb5cee068d47425d28137e9396ed548cc0531cfc4710bcd7f5c015c466db6 | Triage

Sharing

General

Target

d5fb0e22542249e864987be54575c24a_JaffaCakes118
Size

47KB
Sample

240909-kp3v9asdra
MD5

d5fb0e22542249e864987be54575c24a
SHA1

c7f8aa67ee0c084caff007cf90af5e28890df906
SHA256

487eb5cee068d47425d28137e9396ed548cc0531cfc4710bcd7f5c015c466db6
SHA512

6a89dab9ef43d3bafb617fe856270a44e61580e496236d205bd785db1cb5c76c2d3881886b63041bf0b7cee05b0a3efff0963cdfc2312901962227911bbd0e3b
SSDEEP

768:5rvPoz04WvzA+Er9Zc6z6jYYYgaOQpN/kuzBG0Qg0:5LQw4w3FjQpddBwV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d5fb0e22542249e864987be54575c24a_JaffaCakes118
- Size
  
  47KB
- MD5
  
  d5fb0e22542249e864987be54575c24a
- SHA1
  
  c7f8aa67ee0c084caff007cf90af5e28890df906
- SHA256
  
  487eb5cee068d47425d28137e9396ed548cc0531cfc4710bcd7f5c015c466db6
- SHA512
  
  6a89dab9ef43d3bafb617fe856270a44e61580e496236d205bd785db1cb5c76c2d3881886b63041bf0b7cee05b0a3efff0963cdfc2312901962227911bbd0e3b
- SSDEEP
  
  768:5rvPoz04WvzA+Er9Zc6z6jYYYgaOQpN/kuzBG0Qg0:5LQw4w3FjQpddBwV
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2