6b7833947c412f6254113f9052cf0bc9aa2ba39d8b40b314a42ecc833b78d2e9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ef6fec086e0f27852e63da83877f9e65_JaffaCakes118
Size

368KB
Sample

240921-knp8rsteqn
MD5

ef6fec086e0f27852e63da83877f9e65
SHA1

144c486edb44a0e4e5eed49142e1ef09af09b9d2
SHA256

6b7833947c412f6254113f9052cf0bc9aa2ba39d8b40b314a42ecc833b78d2e9
SHA512

91f0a248117c4c81378f0bbb739558ab51d7a8136150de40395cc2a220acd08f0f37876679e45284bc5c153e7257b5f3f98bbdd10a317b0c746807a1fed282af
SSDEEP

6144:agL92UU48OOlg/gwpewysMzEYUM9Kwn832M6w6j05:VLxU5O/gWysMIYlK4AlOj05

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  ef6fec086e0f27852e63da83877f9e65_JaffaCakes118
- Size
  
  368KB
- MD5
  
  ef6fec086e0f27852e63da83877f9e65
- SHA1
  
  144c486edb44a0e4e5eed49142e1ef09af09b9d2
- SHA256
  
  6b7833947c412f6254113f9052cf0bc9aa2ba39d8b40b314a42ecc833b78d2e9
- SHA512
  
  91f0a248117c4c81378f0bbb739558ab51d7a8136150de40395cc2a220acd08f0f37876679e45284bc5c153e7257b5f3f98bbdd10a317b0c746807a1fed282af
- SSDEEP
  
  6144:agL92UU48OOlg/gwpewysMzEYUM9Kwn832M6w6j05:VLxU5O/gWysMIYlK4AlOj05
Score

5^/10

discovery
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2