c2084b93e0d855568e20ef45b5118e092cd6578dcbff711872fe36bed0237dc0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b707785b9d45ea0f404e331d82bde31_JaffaCakes118
Size

1.7MB
Sample

240625-ae9kyazbne
MD5

0b707785b9d45ea0f404e331d82bde31
SHA1

3fea4c9adf887f269329a64df7637ed13ba62a46
SHA256

c2084b93e0d855568e20ef45b5118e092cd6578dcbff711872fe36bed0237dc0
SHA512

027de2abdc7db1631caddf57f7e890ae60b230a48493701ea97cc5ae1e84dee33207f38ccdc20b7fdad890ed1b5a52c6234443215752dc4c50c5bebe176f2d0e
SSDEEP

49152:HKkETpP2iSqH6RLXAxkfWSqlMU8366K8vZMDPFSQj3PPGapJA:qkIFwLvOWU9tVAQyme

Score

7^/10

Malware Config

Targets

- Target
  
  0b707785b9d45ea0f404e331d82bde31_JaffaCakes118
- Size
  
  1.7MB
- MD5
  
  0b707785b9d45ea0f404e331d82bde31
- SHA1
  
  3fea4c9adf887f269329a64df7637ed13ba62a46
- SHA256
  
  c2084b93e0d855568e20ef45b5118e092cd6578dcbff711872fe36bed0237dc0
- SHA512
  
  027de2abdc7db1631caddf57f7e890ae60b230a48493701ea97cc5ae1e84dee33207f38ccdc20b7fdad890ed1b5a52c6234443215752dc4c50c5bebe176f2d0e
- SSDEEP
  
  49152:HKkETpP2iSqH6RLXAxkfWSqlMU8366K8vZMDPFSQj3PPGapJA:qkIFwLvOWU9tVAQyme
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2