6358f71afa7b2ed78b0462f39b2b152a636317953e6a3cddfcb2a9b62558e6d8 | Triage

Sharing

General

Target

86b33cea3b6b02ed613a1fbfd59daa1e_JaffaCakes118
Size

20KB
Sample

240810-tc7s4szhqa
MD5

86b33cea3b6b02ed613a1fbfd59daa1e
SHA1

a07e0a22c4a53f152379d0e618621336da08b900
SHA256

6358f71afa7b2ed78b0462f39b2b152a636317953e6a3cddfcb2a9b62558e6d8
SHA512

f1896cefeaa6bf0507adc0a358a3973d13b427dafb61b2be80d81f467a05d5c6fa933fbbcadf75f3127909504fd8f119bb43b87574a36a53c0e22450f7ff09aa
SSDEEP

384:yyhT9tuNICRb1RCjXh+IDS8a5XT1lDYOEiQlzJQnoFTfUe95nDxy:v94B5RKX48qj1l0ON4Pv8

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  86b33cea3b6b02ed613a1fbfd59daa1e_JaffaCakes118
- Size
  
  20KB
- MD5
  
  86b33cea3b6b02ed613a1fbfd59daa1e
- SHA1
  
  a07e0a22c4a53f152379d0e618621336da08b900
- SHA256
  
  6358f71afa7b2ed78b0462f39b2b152a636317953e6a3cddfcb2a9b62558e6d8
- SHA512
  
  f1896cefeaa6bf0507adc0a358a3973d13b427dafb61b2be80d81f467a05d5c6fa933fbbcadf75f3127909504fd8f119bb43b87574a36a53c0e22450f7ff09aa
- SSDEEP
  
  384:yyhT9tuNICRb1RCjXh+IDS8a5XT1lDYOEiQlzJQnoFTfUe95nDxy:v94B5RKX48qj1l0ON4Pv8
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2