4fc803df0fd7b0a88efc11bc4e3dcb135afecedb0442af1d38aefc7f8b91bdad | Triage

Sharing

General

Target

ea89dbb246414dd5058781437d9a86c6_JaffaCakes118
Size

400KB
Sample

240919-egnhpszcqb
MD5

ea89dbb246414dd5058781437d9a86c6
SHA1

feb36e75cec5534c71abe48eda1cab9b4fa86553
SHA256

4fc803df0fd7b0a88efc11bc4e3dcb135afecedb0442af1d38aefc7f8b91bdad
SHA512

a6b6bf791c0e8272f51466491dcb48f3c5d41ac36fefa923829b16eee024568bd4a63bd677d65ddc1e4da611d818a37e94466602043a87d8c45c82d43ad52967
SSDEEP

12288:JAcxhLUtyCZcAvaY5zaxg5rU4mTFOlexJ5OXd2feQP:JA8hLUttZ1vaY5zaC5Hlo5OXA

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  ea89dbb246414dd5058781437d9a86c6_JaffaCakes118
- Size
  
  400KB
- MD5
  
  ea89dbb246414dd5058781437d9a86c6
- SHA1
  
  feb36e75cec5534c71abe48eda1cab9b4fa86553
- SHA256
  
  4fc803df0fd7b0a88efc11bc4e3dcb135afecedb0442af1d38aefc7f8b91bdad
- SHA512
  
  a6b6bf791c0e8272f51466491dcb48f3c5d41ac36fefa923829b16eee024568bd4a63bd677d65ddc1e4da611d818a37e94466602043a87d8c45c82d43ad52967
- SSDEEP
  
  12288:JAcxhLUtyCZcAvaY5zaxg5rU4mTFOlexJ5OXd2feQP:JA8hLUttZ1vaY5zaC5Hlo5OXA
Score

5^/10

discovery
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2