24245eb894d5897bb898fec53ab8b3ce3cfbf15ff71812578a960ff0f2bab891 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

08f2d8d6b008e29bade907dc96b5650e_JaffaCakes118
Size

285KB
Sample

240430-ea79jabd97
MD5

08f2d8d6b008e29bade907dc96b5650e
SHA1

e3f92f910962e5bcdccb31d1f83c08a88d40979b
SHA256

24245eb894d5897bb898fec53ab8b3ce3cfbf15ff71812578a960ff0f2bab891
SHA512

6850610bf5a75580d8287eb9a1fc6108f914988021914185baef42c1edd1618a87aed49f87932b331ee8b1f2ee3b357c54bed6a9af4994414e79ad76a0376408
SSDEEP

6144:CWBRxSp6Ytv4mI2mSK+QIBNyd/Qd9FdNZE:CWBRxSp82mSBQd/AG

Score

7^/10

Malware Config

Targets

- Target
  
  08f2d8d6b008e29bade907dc96b5650e_JaffaCakes118
- Size
  
  285KB
- MD5
  
  08f2d8d6b008e29bade907dc96b5650e
- SHA1
  
  e3f92f910962e5bcdccb31d1f83c08a88d40979b
- SHA256
  
  24245eb894d5897bb898fec53ab8b3ce3cfbf15ff71812578a960ff0f2bab891
- SHA512
  
  6850610bf5a75580d8287eb9a1fc6108f914988021914185baef42c1edd1618a87aed49f87932b331ee8b1f2ee3b357c54bed6a9af4994414e79ad76a0376408
- SSDEEP
  
  6144:CWBRxSp6Ytv4mI2mSK+QIBNyd/Qd9FdNZE:CWBRxSp82mSBQd/AG
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2