0c71bd52ed0f9c0ca75305b72d9c6fb6d997f1f4a2320c623e47cf77c32ac6cb | Triage

Sharing

General

Target

256f2e9a432571ad9c71495561002509_JaffaCakes118
Size

373KB
Sample

241008-zxd97azgpb
MD5

256f2e9a432571ad9c71495561002509
SHA1

1e9251024702893d8ee4357d53699b2e20fc8d77
SHA256

0c71bd52ed0f9c0ca75305b72d9c6fb6d997f1f4a2320c623e47cf77c32ac6cb
SHA512

0b7737ed3e1aef872404f41aee6132b49e2726532a6ca7ed91eedbfd23c2e2078b69f9a25f550e43b312e9e6b5ff42cc1bcc664dbf822f6377d8adb1390e63e0
SSDEEP

6144:h5uVLa8jISiJJ4m7BfQCHzGwiAP5Uvlk5u915OuzLBLsySpOKDpUJ+e02oeR:fuNjb8BfzHzGJmIu6100CDpR2o

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  256f2e9a432571ad9c71495561002509_JaffaCakes118
- Size
  
  373KB
- MD5
  
  256f2e9a432571ad9c71495561002509
- SHA1
  
  1e9251024702893d8ee4357d53699b2e20fc8d77
- SHA256
  
  0c71bd52ed0f9c0ca75305b72d9c6fb6d997f1f4a2320c623e47cf77c32ac6cb
- SHA512
  
  0b7737ed3e1aef872404f41aee6132b49e2726532a6ca7ed91eedbfd23c2e2078b69f9a25f550e43b312e9e6b5ff42cc1bcc664dbf822f6377d8adb1390e63e0
- SSDEEP
  
  6144:h5uVLa8jISiJJ4m7BfQCHzGwiAP5Uvlk5u915OuzLBLsySpOKDpUJ+e02oeR:fuNjb8BfzHzGJmIu6100CDpR2o
Score

5^/10

discovery
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2