General

  • Target

    b4f05471a141a36da0dc56060ba269c6_JaffaCakes118

  • Size

    322KB

  • Sample

    241130-fwwcjatqe1

  • MD5

    b4f05471a141a36da0dc56060ba269c6

  • SHA1

    b15fde540133c1808a9815346ae48b53052ed3a7

  • SHA256

    b3255977f10fd871e84c39de1600b5acc54b862bce681b959fd210ffcd7f7f9e

  • SHA512

    4266b6713e0c896beb8a89d0dea5b3117506e7ae49774e3b7fcad563c11991d10f8a15c817327909a3cd9deefccee7f4bd4b72af8655161c33d9f23c9d584513

  • SSDEEP

    6144:Molib4IPXJX5/9RpFWF4jotuWcB+RgH6kBGD+Ye3pU+AFI+DfI/g:WPXpldFWF48sWcB+5QPiI0f

Malware Config

Targets

    • Target

      b4f05471a141a36da0dc56060ba269c6_JaffaCakes118

    • Size

      322KB

    • MD5

      b4f05471a141a36da0dc56060ba269c6

    • SHA1

      b15fde540133c1808a9815346ae48b53052ed3a7

    • SHA256

      b3255977f10fd871e84c39de1600b5acc54b862bce681b959fd210ffcd7f7f9e

    • SHA512

      4266b6713e0c896beb8a89d0dea5b3117506e7ae49774e3b7fcad563c11991d10f8a15c817327909a3cd9deefccee7f4bd4b72af8655161c33d9f23c9d584513

    • SSDEEP

      6144:Molib4IPXJX5/9RpFWF4jotuWcB+RgH6kBGD+Ye3pU+AFI+DfI/g:WPXpldFWF48sWcB+5QPiI0f

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks