b9e04ddf14db94027afea00d0b9c5a4db8067193dbeef9bb01153a40da2fbf92 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

76a7ad6f6016340b989364617b2d19e0_JaffaCakes118
Size

14KB
Sample

240727-ch4j7szfpk
MD5

76a7ad6f6016340b989364617b2d19e0
SHA1

726ee6579eee8ff678f41780140559cf41509a1c
SHA256

b9e04ddf14db94027afea00d0b9c5a4db8067193dbeef9bb01153a40da2fbf92
SHA512

cbcbbbc2cd0fbdf42d018fe972065de849f84da92f7779fc633180cbe08a8bc511eba3fe27dbb5540179b2d8e120b7e6db9ebf39d72c84c345a877f36426fd6e
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhR0pjQ:hDXWipuE+K3/SSHgx49Q

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  76a7ad6f6016340b989364617b2d19e0_JaffaCakes118
- Size
  
  14KB
- MD5
  
  76a7ad6f6016340b989364617b2d19e0
- SHA1
  
  726ee6579eee8ff678f41780140559cf41509a1c
- SHA256
  
  b9e04ddf14db94027afea00d0b9c5a4db8067193dbeef9bb01153a40da2fbf92
- SHA512
  
  cbcbbbc2cd0fbdf42d018fe972065de849f84da92f7779fc633180cbe08a8bc511eba3fe27dbb5540179b2d8e120b7e6db9ebf39d72c84c345a877f36426fd6e
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhR0pjQ:hDXWipuE+K3/SSHgx49Q
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2