95fafe1940cc787c0ee93e6ab2590bbbb8e2f2f28d1e209984b5c29ca8abd5ba | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7238f67e8c5cd98b8967b55f761e61c5_JaffaCakes118
Size

14KB
Sample

240726-cq78cszfrj
MD5

7238f67e8c5cd98b8967b55f761e61c5
SHA1

53a65e85416e764d13353d84d6e02c409ac72958
SHA256

95fafe1940cc787c0ee93e6ab2590bbbb8e2f2f28d1e209984b5c29ca8abd5ba
SHA512

8214b77b91f36d423fb0e6b97c565c2c7c7da10254af91373c0c7b9d056725dd1f8e4a1863e95ee130c22f1103528a6c1582b723ccb7c5474586461ddca6a84e
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhWg:hDXWipuE+K3/SSHgxcg

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  7238f67e8c5cd98b8967b55f761e61c5_JaffaCakes118
- Size
  
  14KB
- MD5
  
  7238f67e8c5cd98b8967b55f761e61c5
- SHA1
  
  53a65e85416e764d13353d84d6e02c409ac72958
- SHA256
  
  95fafe1940cc787c0ee93e6ab2590bbbb8e2f2f28d1e209984b5c29ca8abd5ba
- SHA512
  
  8214b77b91f36d423fb0e6b97c565c2c7c7da10254af91373c0c7b9d056725dd1f8e4a1863e95ee130c22f1103528a6c1582b723ccb7c5474586461ddca6a84e
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhWg:hDXWipuE+K3/SSHgxcg
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2