dcf1636a6b75f4aa8b8ea2e14e3c2b7c850a99fb9ef9dbe364997a09f542664c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fbd1fa0928dfd73516d7d08266544a4d_JaffaCakes118
Size

230KB
Sample

240928-jkgxjsthkl
MD5

fbd1fa0928dfd73516d7d08266544a4d
SHA1

d076aec33124bf8d71aef1cbd1e6385850ca7650
SHA256

dcf1636a6b75f4aa8b8ea2e14e3c2b7c850a99fb9ef9dbe364997a09f542664c
SHA512

11cd58cc6ea862ed30ffe6ce3667fa715ec7522c003a54ceb0a0f6d1ece61750d40759f7b2c49be19326ca9c1f7475036bb3959bf1975c44a4742f9dcc6221a2
SSDEEP

3072:tzAi0pU4VSVU69KEEmJHkLvF3X48WFLEaXb0zPIBKM7zX/DHvtC++aYhkWU+KYcR:tz7iUcS6yKlkOhkDz7PtBrUkMK

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  fbd1fa0928dfd73516d7d08266544a4d_JaffaCakes118
- Size
  
  230KB
- MD5
  
  fbd1fa0928dfd73516d7d08266544a4d
- SHA1
  
  d076aec33124bf8d71aef1cbd1e6385850ca7650
- SHA256
  
  dcf1636a6b75f4aa8b8ea2e14e3c2b7c850a99fb9ef9dbe364997a09f542664c
- SHA512
  
  11cd58cc6ea862ed30ffe6ce3667fa715ec7522c003a54ceb0a0f6d1ece61750d40759f7b2c49be19326ca9c1f7475036bb3959bf1975c44a4742f9dcc6221a2
- SSDEEP
  
  3072:tzAi0pU4VSVU69KEEmJHkLvF3X48WFLEaXb0zPIBKM7zX/DHvtC++aYhkWU+KYcR:tz7iUcS6yKlkOhkDz7PtBrUkMK
Score

6^/10

discovery
- Drops desktop.ini file(s)
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2