9e06e8b23542507407417c295d092564a524c0c838469d91fa706224c4574e66 | Triage

Sharing

General

Target

82ed9a6800bd2f0d602f1cf22a220947_JaffaCakes118
Size

232KB
Sample

240802-ec3f3avbkm
MD5

82ed9a6800bd2f0d602f1cf22a220947
SHA1

f2fc34149b1002b422fd418a84b346e2fae705ed
SHA256

9e06e8b23542507407417c295d092564a524c0c838469d91fa706224c4574e66
SHA512

e1f299a474a87c171d2a7ac9ad50314e0fb5d4f6310a1c81464a4a1dfd3720370f2a64ec7961bee54e49aafc212181e561595a9837def8981f529d410512bd57
SSDEEP

6144:DF3PFKs78g2KyEOaWEqxF6snji81RUinKdNOS:FPh+mF

Score

10^/10

discovery evasion persistence

Malware Config

Targets

- Target
  
  82ed9a6800bd2f0d602f1cf22a220947_JaffaCakes118
- Size
  
  232KB
- MD5
  
  82ed9a6800bd2f0d602f1cf22a220947
- SHA1
  
  f2fc34149b1002b422fd418a84b346e2fae705ed
- SHA256
  
  9e06e8b23542507407417c295d092564a524c0c838469d91fa706224c4574e66
- SHA512
  
  e1f299a474a87c171d2a7ac9ad50314e0fb5d4f6310a1c81464a4a1dfd3720370f2a64ec7961bee54e49aafc212181e561595a9837def8981f529d410512bd57
- SSDEEP
  
  6144:DF3PFKs78g2KyEOaWEqxF6snji81RUinKdNOS:FPh+mF
Score

10^/10

discovery evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence

behavioral2

discoveryevasionpersistence