96d24375779ac2d3a945a9e11594866227ac64035ab994f6278d5d5a72ac84f0 | Triage

Sharing

General

Target

48e08db0f49c00478a6cddb4ae61f84b_JaffaCakes118
Size

117KB
Sample

240715-jqnmaawbqm
MD5

48e08db0f49c00478a6cddb4ae61f84b
SHA1

b9c6ca1250b0546fac9c1042fcbaeee3237b0ea5
SHA256

96d24375779ac2d3a945a9e11594866227ac64035ab994f6278d5d5a72ac84f0
SHA512

143dff5aad2a6142b095e44c565f752913e81ec42186304430eeefff9481c1e3ab77c05cc5d169002b209ce96fe776913933fd5f9262f7e280a9c4216bac0664
SSDEEP

3072:ikmWrVxUxpHrFToXF1PHDmQjpQcOc1Y6Cyux:wWZW0XFZDxY6Zi

Score

7^/10

Malware Config

Targets

- Target
  
  48e08db0f49c00478a6cddb4ae61f84b_JaffaCakes118
- Size
  
  117KB
- MD5
  
  48e08db0f49c00478a6cddb4ae61f84b
- SHA1
  
  b9c6ca1250b0546fac9c1042fcbaeee3237b0ea5
- SHA256
  
  96d24375779ac2d3a945a9e11594866227ac64035ab994f6278d5d5a72ac84f0
- SHA512
  
  143dff5aad2a6142b095e44c565f752913e81ec42186304430eeefff9481c1e3ab77c05cc5d169002b209ce96fe776913933fd5f9262f7e280a9c4216bac0664
- SSDEEP
  
  3072:ikmWrVxUxpHrFToXF1PHDmQjpQcOc1Y6Cyux:wWZW0XFZDxY6Zi
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2