eb6ac04f49867c8594a5bc43b5805047ec6e07aef30ae77855b43645e8787cab | Triage

Sharing

General

Target

df2d12e6e6cf117e5fa16ad073241905_JaffaCakes118
Size

92KB
Sample

240914-aye6faybra
MD5

df2d12e6e6cf117e5fa16ad073241905
SHA1

6f698ba4d37752223d5ef97eda0fb053e9a791c7
SHA256

eb6ac04f49867c8594a5bc43b5805047ec6e07aef30ae77855b43645e8787cab
SHA512

f46e8f29c858d3381ca1e7a61f16c9b8c459aae1d95d4c393b85ff4fd56def6048d6b7d06a196665ae931ca4d49580cd0b18c8f3e4ae71660cbed58ee312bba9
SSDEEP

1536:XYzlf8nNcXO8jDBGr8/nyMs0LXGzlaW/eS9uK/Bh1pd0JyoATrSvZCe:FnNRWelanKh1peyTrSvZC

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  df2d12e6e6cf117e5fa16ad073241905_JaffaCakes118
- Size
  
  92KB
- MD5
  
  df2d12e6e6cf117e5fa16ad073241905
- SHA1
  
  6f698ba4d37752223d5ef97eda0fb053e9a791c7
- SHA256
  
  eb6ac04f49867c8594a5bc43b5805047ec6e07aef30ae77855b43645e8787cab
- SHA512
  
  f46e8f29c858d3381ca1e7a61f16c9b8c459aae1d95d4c393b85ff4fd56def6048d6b7d06a196665ae931ca4d49580cd0b18c8f3e4ae71660cbed58ee312bba9
- SSDEEP
  
  1536:XYzlf8nNcXO8jDBGr8/nyMs0LXGzlaW/eS9uK/Bh1pd0JyoATrSvZCe:FnNRWelanKh1peyTrSvZC
Score

6^/10

discovery
- Checks for any installed AV software in registry
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

Security Software Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2