4cf5de7b50686bdee1282bb9649cb886427b680c0f23ae2826856df0f2486bf0 | Triage

Sharing

General

Target

ffcf598eb1ac65c54bf788bdda81aab0_JaffaCakes118
Size

129KB
Sample

240930-ddaa8sthnn
MD5

ffcf598eb1ac65c54bf788bdda81aab0
SHA1

91134db9df2733bb60891c0cc25307902875ba35
SHA256

4cf5de7b50686bdee1282bb9649cb886427b680c0f23ae2826856df0f2486bf0
SHA512

7ff1c8dfa245d60170c717590e11aaedb8b3286314e8c0180a478d5d0cc2664dbe5e8a953a3c5b6652e7a9455236344250da6440864e064ba13cc6de29d6adf3
SSDEEP

3072:4vHVPz4NbWiANngKBUCM8WMz85cmvthpABXoQ3gRsifvTr3B:01bSANgKUQWMYymvthpY3w2iTrx

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ffcf598eb1ac65c54bf788bdda81aab0_JaffaCakes118
- Size
  
  129KB
- MD5
  
  ffcf598eb1ac65c54bf788bdda81aab0
- SHA1
  
  91134db9df2733bb60891c0cc25307902875ba35
- SHA256
  
  4cf5de7b50686bdee1282bb9649cb886427b680c0f23ae2826856df0f2486bf0
- SHA512
  
  7ff1c8dfa245d60170c717590e11aaedb8b3286314e8c0180a478d5d0cc2664dbe5e8a953a3c5b6652e7a9455236344250da6440864e064ba13cc6de29d6adf3
- SSDEEP
  
  3072:4vHVPz4NbWiANngKBUCM8WMz85cmvthpABXoQ3gRsifvTr3B:01bSANgKUQWMYymvthpY3w2iTrx
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2