578a84bc2d7d3a3ef6c69a75a0bd810a6eb0687ecfbd1ac2582036c7bb5ad55e | Triage

Sharing

General

Target

343be18163f1f4bd03951f737dfc6236_JaffaCakes118
Size

2.5MB
Sample

240710-lw6fdstakg
MD5

343be18163f1f4bd03951f737dfc6236
SHA1

24f3da43d7251894d26e4e170b51a310578138b8
SHA256

578a84bc2d7d3a3ef6c69a75a0bd810a6eb0687ecfbd1ac2582036c7bb5ad55e
SHA512

4d8977685e3f2ed137c1c8a0957ed91d8841f1930e2cbd0940373773f23b197c2ea2a47a7fae13a9a4b748adf0aead2030a7f7b5900b4b0545614ee2813d8bb8
SSDEEP

49152:oky796EvMtTx435MtV+Oj29Ls3t/cwCxHHlc2KP1z8o/MO2Uqed3yBI1r4:o7AEvgVOy29Ls3JslVYzjMO26iB

Score

7^/10

Malware Config

Targets

- Target
  
  343be18163f1f4bd03951f737dfc6236_JaffaCakes118
- Size
  
  2.5MB
- MD5
  
  343be18163f1f4bd03951f737dfc6236
- SHA1
  
  24f3da43d7251894d26e4e170b51a310578138b8
- SHA256
  
  578a84bc2d7d3a3ef6c69a75a0bd810a6eb0687ecfbd1ac2582036c7bb5ad55e
- SHA512
  
  4d8977685e3f2ed137c1c8a0957ed91d8841f1930e2cbd0940373773f23b197c2ea2a47a7fae13a9a4b748adf0aead2030a7f7b5900b4b0545614ee2813d8bb8
- SSDEEP
  
  49152:oky796EvMtTx435MtV+Oj29Ls3t/cwCxHHlc2KP1z8o/MO2Uqed3yBI1r4:o7AEvgVOy29Ls3JslVYzjMO26iB
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2