722a3bc1bf77edd6e397c90bdeb6080c8d01d5bf7f1960d0a48aea02de3ca6c6 | Triage

Sharing

General

Target

2e645a76a881b7a1e17654893f4c2716_JaffaCakes118
Size

2.5MB
Sample

240709-axfetaxanl
MD5

2e645a76a881b7a1e17654893f4c2716
SHA1

0797f55e601ad7699e27f6fb7bda25f7f51deab0
SHA256

722a3bc1bf77edd6e397c90bdeb6080c8d01d5bf7f1960d0a48aea02de3ca6c6
SHA512

c2013d3e13d26bec246676a89d1a1879739e6d9e0ec0e02b8243c133ddbee8f9cf9e417973cebe5ead224909b18d6b573b4d5db95cc31aa927691a819272a019
SSDEEP

49152:oky796EvMtTx435MtV+Oj29Ls3t/cwCxHHlc2KP1z8o/MO2Uqed3yBI1rn:o7AEvgVOy29Ls3JslVYzjMO26i4

Score

7^/10

Malware Config

Targets

- Target
  
  2e645a76a881b7a1e17654893f4c2716_JaffaCakes118
- Size
  
  2.5MB
- MD5
  
  2e645a76a881b7a1e17654893f4c2716
- SHA1
  
  0797f55e601ad7699e27f6fb7bda25f7f51deab0
- SHA256
  
  722a3bc1bf77edd6e397c90bdeb6080c8d01d5bf7f1960d0a48aea02de3ca6c6
- SHA512
  
  c2013d3e13d26bec246676a89d1a1879739e6d9e0ec0e02b8243c133ddbee8f9cf9e417973cebe5ead224909b18d6b573b4d5db95cc31aa927691a819272a019
- SSDEEP
  
  49152:oky796EvMtTx435MtV+Oj29Ls3t/cwCxHHlc2KP1z8o/MO2Uqed3yBI1rn:o7AEvgVOy29Ls3JslVYzjMO26i4
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2