e8948f67724fe3b474fc68f7dd82f1fab6ce2ed3191a0f0e90d981878de4b7c6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

75d8cca59d95bcf0fdc8f3b7faa49e0b_JaffaCakes118
Size

14KB
Sample

240726-1ln6pazdjf
MD5

75d8cca59d95bcf0fdc8f3b7faa49e0b
SHA1

1d158865a8f7d96e4fe2a77e50036755926c58e3
SHA256

e8948f67724fe3b474fc68f7dd82f1fab6ce2ed3191a0f0e90d981878de4b7c6
SHA512

163fc0b45dde925f1688884a123bfdd71e91d64a08431ed6928da2118318546e258b3c569002c144a354d65c3cab51ab61c62a1d070d6df4cd80de9787cabc0a
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhz:hDXWipuE+K3/SSHgx9

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  75d8cca59d95bcf0fdc8f3b7faa49e0b_JaffaCakes118
- Size
  
  14KB
- MD5
  
  75d8cca59d95bcf0fdc8f3b7faa49e0b
- SHA1
  
  1d158865a8f7d96e4fe2a77e50036755926c58e3
- SHA256
  
  e8948f67724fe3b474fc68f7dd82f1fab6ce2ed3191a0f0e90d981878de4b7c6
- SHA512
  
  163fc0b45dde925f1688884a123bfdd71e91d64a08431ed6928da2118318546e258b3c569002c144a354d65c3cab51ab61c62a1d070d6df4cd80de9787cabc0a
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhz:hDXWipuE+K3/SSHgx9
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2