c3d5557e7149e3bbedcb025aa1f5e05425bc6d539220c3f5050c3d875d1e7c7d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

de6693818ccebeb00af92eae3ebe0539_JaffaCakes118
Size

116KB
Sample

240913-r5qn7avcnb
MD5

de6693818ccebeb00af92eae3ebe0539
SHA1

0e62f02e8893b7458328e0359e5dc458b9ce71b4
SHA256

c3d5557e7149e3bbedcb025aa1f5e05425bc6d539220c3f5050c3d875d1e7c7d
SHA512

5832b6ec462e6040506586c66aee2c391e257a34133355aa4a0498ce9604ca45b2ffd2adaa3023d66c4cfdb8f6bf6470634f91e85d7b28a5231d36736f71c611
SSDEEP

3072:VUmkx5qm6Rl+fjm0N58+VYI8StbNS+nBi48AcB:VUmkx5qme+fjmftStbxBi4FY

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  de6693818ccebeb00af92eae3ebe0539_JaffaCakes118
- Size
  
  116KB
- MD5
  
  de6693818ccebeb00af92eae3ebe0539
- SHA1
  
  0e62f02e8893b7458328e0359e5dc458b9ce71b4
- SHA256
  
  c3d5557e7149e3bbedcb025aa1f5e05425bc6d539220c3f5050c3d875d1e7c7d
- SHA512
  
  5832b6ec462e6040506586c66aee2c391e257a34133355aa4a0498ce9604ca45b2ffd2adaa3023d66c4cfdb8f6bf6470634f91e85d7b28a5231d36736f71c611
- SSDEEP
  
  3072:VUmkx5qm6Rl+fjm0N58+VYI8StbNS+nBi48AcB:VUmkx5qme+fjmftStbxBi4FY
Score

5^/10

discovery
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2