618f5f921a3b1aa4250241f4bc2404b215524c0e06b2a63116d5277bc094d5b7 | Triage

Sharing

General

Target

2ee1f77b6533fded6c66aca6447e3a52_JaffaCakes118
Size

100KB
Sample

241009-lpmppswalj
MD5

2ee1f77b6533fded6c66aca6447e3a52
SHA1

93d11b444b305696717a476e4c1bf9bf41a650d4
SHA256

618f5f921a3b1aa4250241f4bc2404b215524c0e06b2a63116d5277bc094d5b7
SHA512

c6dc21860266a4de06d0bab023d589e71950105136a2174e730910c6782a1bfaf347aa49a6c6a127d0cbdd32af054879930dd0ef3a1d649677eb6fe0ec4eba48
SSDEEP

1536:EJWFukkZ+zNtWRiZ7lJ/bazZntFpzQ0PSyJMQP3vK4RQd:EWF6ZkHWRxzZzpz8yKK3vZ

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  2ee1f77b6533fded6c66aca6447e3a52_JaffaCakes118
- Size
  
  100KB
- MD5
  
  2ee1f77b6533fded6c66aca6447e3a52
- SHA1
  
  93d11b444b305696717a476e4c1bf9bf41a650d4
- SHA256
  
  618f5f921a3b1aa4250241f4bc2404b215524c0e06b2a63116d5277bc094d5b7
- SHA512
  
  c6dc21860266a4de06d0bab023d589e71950105136a2174e730910c6782a1bfaf347aa49a6c6a127d0cbdd32af054879930dd0ef3a1d649677eb6fe0ec4eba48
- SSDEEP
  
  1536:EJWFukkZ+zNtWRiZ7lJ/bazZntFpzQ0PSyJMQP3vK4RQd:EWF6ZkHWRxzZzpz8yKK3vZ
Score

5^/10

discovery
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2