9372af030b91a1451f80130fa8ce7703ddf6d3ed4824c3c0a77c180915927157 | Triage

Sharing

General

Target

da55064051a441508ef898dbdf6788c4_JaffaCakes118
Size

680KB
Sample

240911-pf3akszgpd
MD5

da55064051a441508ef898dbdf6788c4
SHA1

ce2fe0521f01c2d30bf4795d0a2513fcf0123260
SHA256

9372af030b91a1451f80130fa8ce7703ddf6d3ed4824c3c0a77c180915927157
SHA512

cdfd3215c078482526a401fce1a1531511c4ebf329b799a9010c16ba7915f499374239c54a5178ee86bd0083b8ad09fbd4b2850d96a43aa4d5b0091471a1840a
SSDEEP

12288:vgGpG+Cxq/5j0fqW+q/1sscnQjeaRXebHEvSp9FbVCW1MaO52EhyjNkLHa:ozK4kd3QaFkvSp9FIWerxLa

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  da55064051a441508ef898dbdf6788c4_JaffaCakes118
- Size
  
  680KB
- MD5
  
  da55064051a441508ef898dbdf6788c4
- SHA1
  
  ce2fe0521f01c2d30bf4795d0a2513fcf0123260
- SHA256
  
  9372af030b91a1451f80130fa8ce7703ddf6d3ed4824c3c0a77c180915927157
- SHA512
  
  cdfd3215c078482526a401fce1a1531511c4ebf329b799a9010c16ba7915f499374239c54a5178ee86bd0083b8ad09fbd4b2850d96a43aa4d5b0091471a1840a
- SSDEEP
  
  12288:vgGpG+Cxq/5j0fqW+q/1sscnQjeaRXebHEvSp9FbVCW1MaO52EhyjNkLHa:ozK4kd3QaFkvSp9FIWerxLa
Score

7^/10

discovery
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2