1172ffa7cd7b3b619eebbf27b7642bc44698c0faa1379d91380495fede507f36 | Triage

Sharing

General

Target

65be8c88b60ace74d5782e4c3b5ae74f_JaffaCakes118
Size

471KB
Sample

240522-c9q37aaa81
MD5

65be8c88b60ace74d5782e4c3b5ae74f
SHA1

d04c965a9d071ee5cb7dae7077e295ed4ad259a4
SHA256

1172ffa7cd7b3b619eebbf27b7642bc44698c0faa1379d91380495fede507f36
SHA512

805bd87488528614dfa40b2d4acad86ca7db55817aa751a7a057e4790d57291cb6de9db60eb760bc37fb7ff604c1b663d337ba7b1e383271e3ad505520d7c0b5
SSDEEP

6144:9msyd7BspOWZ+Stxo3Gc2uqy3gu88mWCMpCRWFf2Kj+m+6XjYA1:ppO3StxwGc2c3tfmfsCRA22+m+8f1

Score

7^/10

Malware Config

Targets

- Target
  
  65be8c88b60ace74d5782e4c3b5ae74f_JaffaCakes118
- Size
  
  471KB
- MD5
  
  65be8c88b60ace74d5782e4c3b5ae74f
- SHA1
  
  d04c965a9d071ee5cb7dae7077e295ed4ad259a4
- SHA256
  
  1172ffa7cd7b3b619eebbf27b7642bc44698c0faa1379d91380495fede507f36
- SHA512
  
  805bd87488528614dfa40b2d4acad86ca7db55817aa751a7a057e4790d57291cb6de9db60eb760bc37fb7ff604c1b663d337ba7b1e383271e3ad505520d7c0b5
- SSDEEP
  
  6144:9msyd7BspOWZ+Stxo3Gc2uqy3gu88mWCMpCRWFf2Kj+m+6XjYA1:ppO3StxwGc2c3tfmfsCRA22+m+8f1
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2