e45c7f48581da3d15afbaadf9f068029f0f64f566d1af93d623c16f3f6c64aae | Triage

Sharing

General

Target

42cc9b39b15ca8f18663d2fe5a8636fd_JaffaCakes118
Size

2.5MB
Sample

240713-wwbacs1hlk
MD5

42cc9b39b15ca8f18663d2fe5a8636fd
SHA1

c495620222371c1efe44cdb591661c63ec366725
SHA256

e45c7f48581da3d15afbaadf9f068029f0f64f566d1af93d623c16f3f6c64aae
SHA512

6adc0563e3f56886eaf32c345028deaca0a1b42c722a90d5bb56a917d284eb522a9b2bf3629f9d3294790b6957d86a34041d3ff026fe81532c20bf9d04822948
SSDEEP

49152:ocy796EvMtTx435MtV+rnUgKLWgAOXDHpSeZtk6EBI1rv:47AEvgVOXUgKLWgAWHXyHm

Score

7^/10

Malware Config

Targets

- Target
  
  42cc9b39b15ca8f18663d2fe5a8636fd_JaffaCakes118
- Size
  
  2.5MB
- MD5
  
  42cc9b39b15ca8f18663d2fe5a8636fd
- SHA1
  
  c495620222371c1efe44cdb591661c63ec366725
- SHA256
  
  e45c7f48581da3d15afbaadf9f068029f0f64f566d1af93d623c16f3f6c64aae
- SHA512
  
  6adc0563e3f56886eaf32c345028deaca0a1b42c722a90d5bb56a917d284eb522a9b2bf3629f9d3294790b6957d86a34041d3ff026fe81532c20bf9d04822948
- SSDEEP
  
  49152:ocy796EvMtTx435MtV+rnUgKLWgAOXDHpSeZtk6EBI1rv:47AEvgVOXUgKLWgAWHXyHm
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2