456a22c42f9ec5278846f24c5c347a21738d86bd49304eaaf577957576a28452 | Triage

Sharing

General

Target

72a1b74b5915549b387293439225b0df_JaffaCakes118
Size

2.6MB
Sample

240726-fcdclszfqe
MD5

72a1b74b5915549b387293439225b0df
SHA1

1bcfd53c7044c83320510ec5ab76c838ee1598e8
SHA256

456a22c42f9ec5278846f24c5c347a21738d86bd49304eaaf577957576a28452
SHA512

8c85e4b03144c6c62c25102468fb7beaf897189b04e94fdddcfa86908adb8306f863987a49cab9f55809165c90075fc2ffc67c9efb8a9574033d5cf5550b8139
SSDEEP

49152:oDy796EvMtTx435MtV+On5vMNbcwO6m2zGKYraTh+ZTOdFrxviiBI1rh:f7AEvgVOA5WbcoHzGlr8h+5q4i2

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  72a1b74b5915549b387293439225b0df_JaffaCakes118
- Size
  
  2.6MB
- MD5
  
  72a1b74b5915549b387293439225b0df
- SHA1
  
  1bcfd53c7044c83320510ec5ab76c838ee1598e8
- SHA256
  
  456a22c42f9ec5278846f24c5c347a21738d86bd49304eaaf577957576a28452
- SHA512
  
  8c85e4b03144c6c62c25102468fb7beaf897189b04e94fdddcfa86908adb8306f863987a49cab9f55809165c90075fc2ffc67c9efb8a9574033d5cf5550b8139
- SSDEEP
  
  49152:oDy796EvMtTx435MtV+On5vMNbcwO6m2zGKYraTh+ZTOdFrxviiBI1rh:f7AEvgVOA5WbcoHzGlr8h+5q4i2
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2