2fe852c48f2da29a378fd2784e8358450bf8b76b224987a6d243f03fd902f965 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fe00608554bd808bfa787383ae1491fe_JaffaCakes118
Size

545KB
Sample

240929-hnytsswfmc
MD5

fe00608554bd808bfa787383ae1491fe
SHA1

1b07cbcfd9e44b628b9ec5f0caa15881ed19d3fe
SHA256

2fe852c48f2da29a378fd2784e8358450bf8b76b224987a6d243f03fd902f965
SHA512

ea6a3038b505a3af18038879a466c24ade8e3e0eea3b11ae6486f63a2345e5f6e1ec44bbaa144171ff3cd02aeb2723b3752d8871702a88bbaf71287ce56eb1e7
SSDEEP

12288:0rod0KjPJozm2YUHNtILlRPQEJuMOqkC92DVzxjfofaDZ8:02LjSq2YUtK/J5OFxxLofAO

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  fe00608554bd808bfa787383ae1491fe_JaffaCakes118
- Size
  
  545KB
- MD5
  
  fe00608554bd808bfa787383ae1491fe
- SHA1
  
  1b07cbcfd9e44b628b9ec5f0caa15881ed19d3fe
- SHA256
  
  2fe852c48f2da29a378fd2784e8358450bf8b76b224987a6d243f03fd902f965
- SHA512
  
  ea6a3038b505a3af18038879a466c24ade8e3e0eea3b11ae6486f63a2345e5f6e1ec44bbaa144171ff3cd02aeb2723b3752d8871702a88bbaf71287ce56eb1e7
- SSDEEP
  
  12288:0rod0KjPJozm2YUHNtILlRPQEJuMOqkC92DVzxjfofaDZ8:02LjSq2YUtK/J5OFxxLofAO
Score

5^/10

discovery
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2