db523aef61821b4859cb6dc831315051ed891744371256822abe22580ea53838 | Triage

Sharing

General

Target

3a76ff8e6c8b39333f0cb44c3754b2f9_JaffaCakes118
Size

86KB
Sample

240711-ya8pva1ckk
MD5

3a76ff8e6c8b39333f0cb44c3754b2f9
SHA1

45ee44b0d184c0750d533ffdee06b5fb6572e1bf
SHA256

db523aef61821b4859cb6dc831315051ed891744371256822abe22580ea53838
SHA512

dfd4bb5631379285d73c2beb0a91ab20867641cded9969c24121022733e9b8b7d6501e63de66a9bc2038e3b1c907dff0abf4cdf5a88638a74bc05461d74ff0cb
SSDEEP

1536:hyZMSZFvknTePMZd4k4kJJEA2SiurLbVwWGdi+AOhDD7diuzWt2PHehU7dxX:gZMJnTeM4cJJkSiILbLRt+DDMuzWtVh+

Score

7^/10

Malware Config

Targets

- Target
  
  3a76ff8e6c8b39333f0cb44c3754b2f9_JaffaCakes118
- Size
  
  86KB
- MD5
  
  3a76ff8e6c8b39333f0cb44c3754b2f9
- SHA1
  
  45ee44b0d184c0750d533ffdee06b5fb6572e1bf
- SHA256
  
  db523aef61821b4859cb6dc831315051ed891744371256822abe22580ea53838
- SHA512
  
  dfd4bb5631379285d73c2beb0a91ab20867641cded9969c24121022733e9b8b7d6501e63de66a9bc2038e3b1c907dff0abf4cdf5a88638a74bc05461d74ff0cb
- SSDEEP
  
  1536:hyZMSZFvknTePMZd4k4kJJEA2SiurLbVwWGdi+AOhDD7diuzWt2PHehU7dxX:gZMJnTeM4cJJkSiILbLRt+DDMuzWtVh+
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2