ae42a85698792404431f7d7a5af9efa5957ba6e39a07465955bba9660cc9287e | Triage

Sharing

General

Target

e1fc84e112eb855f22dc1db9ff7e9a1f_JaffaCakes118
Size

593KB
Sample

240915-jcz36asfqp
MD5

e1fc84e112eb855f22dc1db9ff7e9a1f
SHA1

492db5ba3ecfcaa2f93d1735490ff4578b88775a
SHA256

ae42a85698792404431f7d7a5af9efa5957ba6e39a07465955bba9660cc9287e
SHA512

880e2fdaf1ad52886d8486fb0bfdb380d135b4fd4c548c6cfb670e5f01eaaf2c929cae88f8e2c54f835ea39114c3fc6aacfcba74c49bf2ff67b1b6f922bafcf3
SSDEEP

12288:qjDoHMfc58H6K/YziF9AHataFnlYJ5moF3Z4mxxNDqVTVOCF:qHTHt/YziFKCaFn0/QmXMVTzF

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e1fc84e112eb855f22dc1db9ff7e9a1f_JaffaCakes118
- Size
  
  593KB
- MD5
  
  e1fc84e112eb855f22dc1db9ff7e9a1f
- SHA1
  
  492db5ba3ecfcaa2f93d1735490ff4578b88775a
- SHA256
  
  ae42a85698792404431f7d7a5af9efa5957ba6e39a07465955bba9660cc9287e
- SHA512
  
  880e2fdaf1ad52886d8486fb0bfdb380d135b4fd4c548c6cfb670e5f01eaaf2c929cae88f8e2c54f835ea39114c3fc6aacfcba74c49bf2ff67b1b6f922bafcf3
- SSDEEP
  
  12288:qjDoHMfc58H6K/YziF9AHataFnlYJ5moF3Z4mxxNDqVTVOCF:qHTHt/YziFKCaFn0/QmXMVTzF
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2