d446eb22cbe7f21cd756503a49f4046621135c9c3ffdc22aeba710cd1e5213b8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3b1466a95e53c0f4d08672dd0543169a_JaffaCakes118
Size

208KB
Sample

240711-24j55aycmm
MD5

3b1466a95e53c0f4d08672dd0543169a
SHA1

aa4b434a07bd385de78db986f578ef508a85c98a
SHA256

d446eb22cbe7f21cd756503a49f4046621135c9c3ffdc22aeba710cd1e5213b8
SHA512

57d27097079aabc6031d54906b0502bcb237468052114430d069909706d1ab67b4d0f34add056223108239a521bd7faa19ad232c279bb1336fc08a3a6b32e5b6
SSDEEP

3072:HDMM1Z6D7979aAqvxpDWDhQx9AhHp8NeqxEN1yy8p+uxn/a:H5ZyoA8pDqQx9AhJSRxiJ8jl/a

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  3b1466a95e53c0f4d08672dd0543169a_JaffaCakes118
- Size
  
  208KB
- MD5
  
  3b1466a95e53c0f4d08672dd0543169a
- SHA1
  
  aa4b434a07bd385de78db986f578ef508a85c98a
- SHA256
  
  d446eb22cbe7f21cd756503a49f4046621135c9c3ffdc22aeba710cd1e5213b8
- SHA512
  
  57d27097079aabc6031d54906b0502bcb237468052114430d069909706d1ab67b4d0f34add056223108239a521bd7faa19ad232c279bb1336fc08a3a6b32e5b6
- SSDEEP
  
  3072:HDMM1Z6D7979aAqvxpDWDhQx9AhHp8NeqxEN1yy8p+uxn/a:H5ZyoA8pDqQx9AhJSRxiJ8jl/a
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence