d489137568c07290d1bdfd3f262f885b31d9f86ce0aa897aadf5eba210cf9827 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3a04357b04599fa2b97d9e6c8b0c88a2_JaffaCakes118
Size

251KB
Sample

241012-pnxp3azgra
MD5

3a04357b04599fa2b97d9e6c8b0c88a2
SHA1

8f9c76fc33edd929836d43662599f8ea24509e9b
SHA256

d489137568c07290d1bdfd3f262f885b31d9f86ce0aa897aadf5eba210cf9827
SHA512

fb6548f12170c83eb9ecc12b0b4521c78b32107ca7a9446b6decc45caa55229eac1d403cfdc978f59c0ee84de1a5c1233ab9732b88eb453c9ee5e2e9068af230
SSDEEP

3072:kXol+h+P2+fTDqAtEO0kajhmEOh0I2eQZZuQrwRwLUYn5CzJTKKcPcB6Hjfmnjiz:kXo3qGEHthvZ9Ld0dKjP76mv

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3a04357b04599fa2b97d9e6c8b0c88a2_JaffaCakes118
- Size
  
  251KB
- MD5
  
  3a04357b04599fa2b97d9e6c8b0c88a2
- SHA1
  
  8f9c76fc33edd929836d43662599f8ea24509e9b
- SHA256
  
  d489137568c07290d1bdfd3f262f885b31d9f86ce0aa897aadf5eba210cf9827
- SHA512
  
  fb6548f12170c83eb9ecc12b0b4521c78b32107ca7a9446b6decc45caa55229eac1d403cfdc978f59c0ee84de1a5c1233ab9732b88eb453c9ee5e2e9068af230
- SSDEEP
  
  3072:kXol+h+P2+fTDqAtEO0kajhmEOh0I2eQZZuQrwRwLUYn5CzJTKKcPcB6Hjfmnjiz:kXo3qGEHthvZ9Ld0dKjP76mv
Score

7^/10

discovery
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2