d113cc1b713c10465bbeb5fbfabc6ff01c313bfb2aaec4679d6a59e877be27ec | Triage

Sharing

General

Target

45956f8c389a08115a075905420893cc_JaffaCakes118
Size

69KB
Sample

240714-nevnns1ane
MD5

45956f8c389a08115a075905420893cc
SHA1

15c3f5d618ae9741f0c107d26e0569b5d0e506e7
SHA256

d113cc1b713c10465bbeb5fbfabc6ff01c313bfb2aaec4679d6a59e877be27ec
SHA512

34a99e517380c58357966787532f7d31cfc8ced700f877aef8fe8ff363b97ca2f2956e76671228e006dcf38d2cb2c0849e75417ca0b2a899d04b6684fb65778c
SSDEEP

1536:lmqSQ5X9SQxNzNBNiuETr3PcT1/djHKlnEx:2MXEQxlhiBPcT1/9HKFEx

Score

7^/10

Malware Config

Targets

- Target
  
  45956f8c389a08115a075905420893cc_JaffaCakes118
- Size
  
  69KB
- MD5
  
  45956f8c389a08115a075905420893cc
- SHA1
  
  15c3f5d618ae9741f0c107d26e0569b5d0e506e7
- SHA256
  
  d113cc1b713c10465bbeb5fbfabc6ff01c313bfb2aaec4679d6a59e877be27ec
- SHA512
  
  34a99e517380c58357966787532f7d31cfc8ced700f877aef8fe8ff363b97ca2f2956e76671228e006dcf38d2cb2c0849e75417ca0b2a899d04b6684fb65778c
- SSDEEP
  
  1536:lmqSQ5X9SQxNzNBNiuETr3PcT1/djHKlnEx:2MXEQxlhiBPcT1/9HKFEx
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2