27eadd546eb762a3ef807db74eec78e2ccfb7da7d242a19cfd687c7ef577d434 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e1e9d4fcaaccf73018565769628ed202_JaffaCakes118
Size

356KB
Sample

240915-hhhkma1ajf
MD5

e1e9d4fcaaccf73018565769628ed202
SHA1

46f37291d8ea590bdc3d7c564c97ff1c5daa2435
SHA256

27eadd546eb762a3ef807db74eec78e2ccfb7da7d242a19cfd687c7ef577d434
SHA512

6449490975249f22cfdad3f00735779abb247b22e57850cb57744535e4507a73c92083183aea8fede2b29add9f7dbf34f0eadc414785fef1d8ab50dc74281040
SSDEEP

3072:VACO9BCqsGxxeq/qU7raAkFksaME/GSpnIgGbswpJoNIQzeeeeo4/QMmoNfuFG5+:VA1nIgK54IQzeeeL4/QcNfNjX88A

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  e1e9d4fcaaccf73018565769628ed202_JaffaCakes118
- Size
  
  356KB
- MD5
  
  e1e9d4fcaaccf73018565769628ed202
- SHA1
  
  46f37291d8ea590bdc3d7c564c97ff1c5daa2435
- SHA256
  
  27eadd546eb762a3ef807db74eec78e2ccfb7da7d242a19cfd687c7ef577d434
- SHA512
  
  6449490975249f22cfdad3f00735779abb247b22e57850cb57744535e4507a73c92083183aea8fede2b29add9f7dbf34f0eadc414785fef1d8ab50dc74281040
- SSDEEP
  
  3072:VACO9BCqsGxxeq/qU7raAkFksaME/GSpnIgGbswpJoNIQzeeeeo4/QMmoNfuFG5+:VA1nIgK54IQzeeeL4/QcNfNjX88A
Score

5^/10

discovery
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2