40ebe035590c64296109d98afb4a1b5290a21f8b74b4bc6a25a7d05a3c2dd39f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fd2b0d5f54d164b7a6dad45ef9b1def6_JaffaCakes118
Size

19KB
Sample

240928-z88ceaxajl
MD5

fd2b0d5f54d164b7a6dad45ef9b1def6
SHA1

e129e37762934901c5c419987f837d8e82a3c8f9
SHA256

40ebe035590c64296109d98afb4a1b5290a21f8b74b4bc6a25a7d05a3c2dd39f
SHA512

ad8243da059cff1f0563adfc0c8e4361c4feaf3193cf2cc9b2f9b7fc24d565dc9199034d775ba5b2f20c43d1ab670b0ea341104526ac36641c7d81c86e03e08c
SSDEEP

384:UtKHW2vD3kR4pDAqCBKinRwJ6AydnbD90H59eH1bhgTb0mJHvRWvEVWo3SaZ36MC:UAHW2TJpDAqJOwJRyND9Os1yTo4Muf6d

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  fd2b0d5f54d164b7a6dad45ef9b1def6_JaffaCakes118
- Size
  
  19KB
- MD5
  
  fd2b0d5f54d164b7a6dad45ef9b1def6
- SHA1
  
  e129e37762934901c5c419987f837d8e82a3c8f9
- SHA256
  
  40ebe035590c64296109d98afb4a1b5290a21f8b74b4bc6a25a7d05a3c2dd39f
- SHA512
  
  ad8243da059cff1f0563adfc0c8e4361c4feaf3193cf2cc9b2f9b7fc24d565dc9199034d775ba5b2f20c43d1ab670b0ea341104526ac36641c7d81c86e03e08c
- SSDEEP
  
  384:UtKHW2vD3kR4pDAqCBKinRwJ6AydnbD90H59eH1bhgTb0mJHvRWvEVWo3SaZ36MC:UAHW2TJpDAqJOwJRyND9Os1yTo4Muf6d
Score

7^/10

discovery
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2