71a7c6be2bea28c81deb73435e5fec7e67ed1b66efffbc60a2b9e56ff6a2b3ad | Triage

Sharing

General

Target

45547df6a597c4397554199150c9efea_JaffaCakes118
Size

1.0MB
Sample

241015-cqfs4syglh
MD5

45547df6a597c4397554199150c9efea
SHA1

ab476ae8ec193d5aaaf0689aed9865667adce880
SHA256

71a7c6be2bea28c81deb73435e5fec7e67ed1b66efffbc60a2b9e56ff6a2b3ad
SHA512

4662f19855ffc9e1c766cee39c26efe6d44b36ac39ffac6d61439459f0428606cd9ac264d41133691705823f94323ded4f48a40c24f539c60279a180abe29786
SSDEEP

24576:1f7wX88YwRVSfyh/QxxUb9qwkoZK4WRjdPjIYQA+OmW6GkOJNt:9sX88YASfYmUJkp7BI/Pyt

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  45547df6a597c4397554199150c9efea_JaffaCakes118
- Size
  
  1.0MB
- MD5
  
  45547df6a597c4397554199150c9efea
- SHA1
  
  ab476ae8ec193d5aaaf0689aed9865667adce880
- SHA256
  
  71a7c6be2bea28c81deb73435e5fec7e67ed1b66efffbc60a2b9e56ff6a2b3ad
- SHA512
  
  4662f19855ffc9e1c766cee39c26efe6d44b36ac39ffac6d61439459f0428606cd9ac264d41133691705823f94323ded4f48a40c24f539c60279a180abe29786
- SSDEEP
  
  24576:1f7wX88YwRVSfyh/QxxUb9qwkoZK4WRjdPjIYQA+OmW6GkOJNt:9sX88YASfYmUJkp7BI/Pyt
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Use of msiexec (install) with remote resource
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2