391ab39aaaffa88f3ffd30104a83adcbc74cb281b6d81bc556efe7ca231270e0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ddc00db341d9e01052136ae5f9411d6b_JaffaCakes118
Size

164KB
Sample

240913-f1fsmswelm
MD5

ddc00db341d9e01052136ae5f9411d6b
SHA1

8905fb2c5d98062e802d7509fef45f648e88d72d
SHA256

391ab39aaaffa88f3ffd30104a83adcbc74cb281b6d81bc556efe7ca231270e0
SHA512

263a4d673d6e7df16750c608c0b0bb4322d71a5e06a14f36eb384f65c30c931554a10efca8abaa60536261390976b773d10695da9904f3674b0450861c1fd570
SSDEEP

3072:kDDEwbnPWrXsKYYHXn2dFHPE6R94fVdq0mtAYxfDbv0AIIuE7Dbyo5wK:aowbnOLsK9GdFHPE++fDmuYFn8PIp7D3

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  ddc00db341d9e01052136ae5f9411d6b_JaffaCakes118
- Size
  
  164KB
- MD5
  
  ddc00db341d9e01052136ae5f9411d6b
- SHA1
  
  8905fb2c5d98062e802d7509fef45f648e88d72d
- SHA256
  
  391ab39aaaffa88f3ffd30104a83adcbc74cb281b6d81bc556efe7ca231270e0
- SHA512
  
  263a4d673d6e7df16750c608c0b0bb4322d71a5e06a14f36eb384f65c30c931554a10efca8abaa60536261390976b773d10695da9904f3674b0450861c1fd570
- SSDEEP
  
  3072:kDDEwbnPWrXsKYYHXn2dFHPE6R94fVdq0mtAYxfDbv0AIIuE7Dbyo5wK:aowbnOLsK9GdFHPE++fDmuYFn8PIp7D3
Score

5^/10

discovery
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2