9a1cbb97aa01c6e3e1077c23aafbba48455bbe0691943c0cd68b0a6bf78883ea | Triage

Sharing

General

Target

3afe2f4d1e15d9e68c702c0482845b53_JaffaCakes118
Size

465KB
Sample

240711-2k1c1azdkg
MD5

3afe2f4d1e15d9e68c702c0482845b53
SHA1

bbe02fbcbc4ed8055661ec446120c2b9158e347c
SHA256

9a1cbb97aa01c6e3e1077c23aafbba48455bbe0691943c0cd68b0a6bf78883ea
SHA512

909340b3fb4a1c0ffaf8db027497b70f1af0df006afcc925be1d1dbcaefb79648bb172dc532dca0d9a498d4eebef1bc0d67141daf9377fb87a2654d562baa4ac
SSDEEP

12288:gutrzh9xOXkkZKbfeFGZlee8Y4TImjSMGpG7eXEdRZ0BMS924:gutr5OUkZIfK8AYdmjxLewBv4

Score

7^/10

Malware Config

Targets

- Target
  
  3afe2f4d1e15d9e68c702c0482845b53_JaffaCakes118
- Size
  
  465KB
- MD5
  
  3afe2f4d1e15d9e68c702c0482845b53
- SHA1
  
  bbe02fbcbc4ed8055661ec446120c2b9158e347c
- SHA256
  
  9a1cbb97aa01c6e3e1077c23aafbba48455bbe0691943c0cd68b0a6bf78883ea
- SHA512
  
  909340b3fb4a1c0ffaf8db027497b70f1af0df006afcc925be1d1dbcaefb79648bb172dc532dca0d9a498d4eebef1bc0d67141daf9377fb87a2654d562baa4ac
- SSDEEP
  
  12288:gutrzh9xOXkkZKbfeFGZlee8Y4TImjSMGpG7eXEdRZ0BMS924:gutr5OUkZIfK8AYdmjxLewBv4
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2