b291501f82f95812352b39b41d9180e6f2760c5b3fcebac14d94e3e220489409 | Triage

Sharing

General

Target

ff526c81b24b5dbc4b303b5531067d8c_JaffaCakes118
Size

263KB
Sample

240929-zqzmjszfkk
MD5

ff526c81b24b5dbc4b303b5531067d8c
SHA1

02e9c4580192320657f50a80712dd540d82b4d6f
SHA256

b291501f82f95812352b39b41d9180e6f2760c5b3fcebac14d94e3e220489409
SHA512

188aea5cad9b5e45eaebc8817b6aad9d7923925c8da2d1248ed2370871f41c9d50bca49bc313d4c9d328f60ba786a3b7dd7ad72e3b1d7fa33580d69dcf9c6a15
SSDEEP

3072:IFWa/6izJJiBER6ayOezDVaQjypUADDWsMMqf63a0NfHwcUrblZvehzPOTearT86:Hi6sGydDX7RGeJWDrTPvaSq98

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  ff526c81b24b5dbc4b303b5531067d8c_JaffaCakes118
- Size
  
  263KB
- MD5
  
  ff526c81b24b5dbc4b303b5531067d8c
- SHA1
  
  02e9c4580192320657f50a80712dd540d82b4d6f
- SHA256
  
  b291501f82f95812352b39b41d9180e6f2760c5b3fcebac14d94e3e220489409
- SHA512
  
  188aea5cad9b5e45eaebc8817b6aad9d7923925c8da2d1248ed2370871f41c9d50bca49bc313d4c9d328f60ba786a3b7dd7ad72e3b1d7fa33580d69dcf9c6a15
- SSDEEP
  
  3072:IFWa/6izJJiBER6ayOezDVaQjypUADDWsMMqf63a0NfHwcUrblZvehzPOTearT86:Hi6sGydDX7RGeJWDrTPvaSq98
Score

6^/10

discovery
- Drops desktop.ini file(s)
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2