354ae4f41e917affff0a07c2ca81d9d50e0996076a9b71a7223cd5a6a3f500b5 | Triage

Sharing

General

Target

698bfc1864968a8a9fd075b2516d9e16_JaffaCakes118
Size

617KB
Sample

240724-ana4qszgqb
MD5

698bfc1864968a8a9fd075b2516d9e16
SHA1

36603fac10528dfa880cc6409923fbbab21cae28
SHA256

354ae4f41e917affff0a07c2ca81d9d50e0996076a9b71a7223cd5a6a3f500b5
SHA512

646e400169b9985666f44734630b4f0944621ad63253add8c4ee3d967fea31e83ffc5ca46509db290398baed07f87097c60113790c12c5aacd2d1d334eb706e9
SSDEEP

12288:XLYe/s4ln/DaUKrasi1KxwaCGJcbJgp/eyzePUBtRtGL72yZ:XUL4lr5VKSaCGJcCeqesBtfGF

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  698bfc1864968a8a9fd075b2516d9e16_JaffaCakes118
- Size
  
  617KB
- MD5
  
  698bfc1864968a8a9fd075b2516d9e16
- SHA1
  
  36603fac10528dfa880cc6409923fbbab21cae28
- SHA256
  
  354ae4f41e917affff0a07c2ca81d9d50e0996076a9b71a7223cd5a6a3f500b5
- SHA512
  
  646e400169b9985666f44734630b4f0944621ad63253add8c4ee3d967fea31e83ffc5ca46509db290398baed07f87097c60113790c12c5aacd2d1d334eb706e9
- SSDEEP
  
  12288:XLYe/s4ln/DaUKrasi1KxwaCGJcbJgp/eyzePUBtRtGL72yZ:XUL4lr5VKSaCGJcCeqesBtfGF
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2