11d33e7fba288f71220e38e0bd171e848e99e95ddfb3d0ffd1ad8d7a5e333ba2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1005cc7e0e49a48283e0dde72e54e181_JaffaCakes118
Size

140KB
Sample

241003-wtkq1ssgre
MD5

1005cc7e0e49a48283e0dde72e54e181
SHA1

aff390103302f08e1e3b04940799521341ba206e
SHA256

11d33e7fba288f71220e38e0bd171e848e99e95ddfb3d0ffd1ad8d7a5e333ba2
SHA512

3c89319db586041aa240f2037efc149931cd6f2c4a92e34dd99f4bb5b6afd3e6c13b16c87d62e138e3de44f83c6a323c19533bdd8533cb61768e7dd3f8704c0d
SSDEEP

3072:cTIjnQTr5WeAqlMh5CrzktXYAngLA1IW0XnE2ze8PPVA:VnWWeAqlKyzYXYAgLA1b0UAe8PPa

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  1005cc7e0e49a48283e0dde72e54e181_JaffaCakes118
- Size
  
  140KB
- MD5
  
  1005cc7e0e49a48283e0dde72e54e181
- SHA1
  
  aff390103302f08e1e3b04940799521341ba206e
- SHA256
  
  11d33e7fba288f71220e38e0bd171e848e99e95ddfb3d0ffd1ad8d7a5e333ba2
- SHA512
  
  3c89319db586041aa240f2037efc149931cd6f2c4a92e34dd99f4bb5b6afd3e6c13b16c87d62e138e3de44f83c6a323c19533bdd8533cb61768e7dd3f8704c0d
- SSDEEP
  
  3072:cTIjnQTr5WeAqlMh5CrzktXYAngLA1IW0XnE2ze8PPVA:VnWWeAqlKyzYXYAgLA1b0UAe8PPa
Score

5^/10

discovery
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2