87b2bc28a51ba69bf33a29b6409e70faaa2ddc9d6dead45a432804fe3ba31a60 | Triage

Sharing

General

Target

9b8bcdcf51cf889240b33561cce1a5e6_JaffaCakes118
Size

317KB
Sample

240610-wmp26avhml
MD5

9b8bcdcf51cf889240b33561cce1a5e6
SHA1

4509bfd2aa3ef5366fca5386f8e70677b7c487fb
SHA256

87b2bc28a51ba69bf33a29b6409e70faaa2ddc9d6dead45a432804fe3ba31a60
SHA512

027e4129dc0b61b4bce01c399df7378f013b5f0291ecf58b1c0183a2fe7750cf8a79670a661d85b07a1c0b9e7b912af263eacb11978075d38795e44ad7abf59c
SSDEEP

6144:H2yYM47toLbii5bkgVuN+xSKV7Wkrsf7LsgEyd+xhsB3anw73/:H2yYM47qXikbkgaISKVAfd+h1nw7P

Score

7^/10

Malware Config

Targets

- Target
  
  9b8bcdcf51cf889240b33561cce1a5e6_JaffaCakes118
- Size
  
  317KB
- MD5
  
  9b8bcdcf51cf889240b33561cce1a5e6
- SHA1
  
  4509bfd2aa3ef5366fca5386f8e70677b7c487fb
- SHA256
  
  87b2bc28a51ba69bf33a29b6409e70faaa2ddc9d6dead45a432804fe3ba31a60
- SHA512
  
  027e4129dc0b61b4bce01c399df7378f013b5f0291ecf58b1c0183a2fe7750cf8a79670a661d85b07a1c0b9e7b912af263eacb11978075d38795e44ad7abf59c
- SSDEEP
  
  6144:H2yYM47toLbii5bkgVuN+xSKV7Wkrsf7LsgEyd+xhsB3anw73/:H2yYM47qXikbkgaISKVAfd+h1nw7P
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2