23acb794d1c6b47f60ccb739fef8c7fc6c68b89e3beb1dab23609278780897b5 | Triage

Sharing

General

Target

9b72de829c719511aeec8c12fc45c8ce_JaffaCakes118
Size

164KB
Sample

240610-vyqmdstfrc
MD5

9b72de829c719511aeec8c12fc45c8ce
SHA1

29cc6bfaafc3d04c6832187860abb1e9f4e4a422
SHA256

23acb794d1c6b47f60ccb739fef8c7fc6c68b89e3beb1dab23609278780897b5
SHA512

474d6488fb4512da39d5eed8bfea99c09cd5ba04175874fcfc510410d4d872fed1476b9e6b7e1153103fbdda17df6203bfdae4f79a6347d40e7d36fdc8e8dcd6
SSDEEP

3072:J0erJVUZdoQ+Qaf4Lx5o8TD0kQIbEHYcOzIk8UFsQvgff3lKviI5Tb:qeMnoQ+K5o8MME4cO8k3sQIfZI5f

Score

7^/10

Malware Config

Targets

- Target
  
  9b72de829c719511aeec8c12fc45c8ce_JaffaCakes118
- Size
  
  164KB
- MD5
  
  9b72de829c719511aeec8c12fc45c8ce
- SHA1
  
  29cc6bfaafc3d04c6832187860abb1e9f4e4a422
- SHA256
  
  23acb794d1c6b47f60ccb739fef8c7fc6c68b89e3beb1dab23609278780897b5
- SHA512
  
  474d6488fb4512da39d5eed8bfea99c09cd5ba04175874fcfc510410d4d872fed1476b9e6b7e1153103fbdda17df6203bfdae4f79a6347d40e7d36fdc8e8dcd6
- SSDEEP
  
  3072:J0erJVUZdoQ+Qaf4Lx5o8TD0kQIbEHYcOzIk8UFsQvgff3lKviI5Tb:qeMnoQ+K5o8MME4cO8k3sQIfZI5f
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2