e0b619b992d73150d02d63b39d7f5c52d2e2fe23cf9ea1a6057fbae29fb12167 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3d0007765480528f6d5a84235fe50a7c_JaffaCakes118
Size

750KB
Sample

241013-bj8pwa1fkc
MD5

3d0007765480528f6d5a84235fe50a7c
SHA1

3c92922faff37367b5948bd5245ffc3b48f3c79a
SHA256

e0b619b992d73150d02d63b39d7f5c52d2e2fe23cf9ea1a6057fbae29fb12167
SHA512

66690dfcadb4aee2f7dce9d0602a8fbfc9bb879d31766614519260593b562ac8210be456b11dfb23ee06ee5eca5d53941569714702d7d7f11f30ad1787ac983d
SSDEEP

12288:zA7koWiM8h+q6Vq5gw1OqFMo8YL1wUYlAzsOLR4TSNS8uRuzzdMZfSpCiU:lZuVxModL1wVlA/eYPzdMNS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3d0007765480528f6d5a84235fe50a7c_JaffaCakes118
- Size
  
  750KB
- MD5
  
  3d0007765480528f6d5a84235fe50a7c
- SHA1
  
  3c92922faff37367b5948bd5245ffc3b48f3c79a
- SHA256
  
  e0b619b992d73150d02d63b39d7f5c52d2e2fe23cf9ea1a6057fbae29fb12167
- SHA512
  
  66690dfcadb4aee2f7dce9d0602a8fbfc9bb879d31766614519260593b562ac8210be456b11dfb23ee06ee5eca5d53941569714702d7d7f11f30ad1787ac983d
- SSDEEP
  
  12288:zA7koWiM8h+q6Vq5gw1OqFMo8YL1wUYlAzsOLR4TSNS8uRuzzdMZfSpCiU:lZuVxModL1wVlA/eYPzdMNS
Score

7^/10

discovery
- Uses the VBS compiler for execution
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2