858c1a15ec73430b4d1dc2f3c3fa1365ba935c4d2d03718d290f71847e352935 | Triage

Sharing

General

Target

8787ab0122b63692d45c711c62a9ae5b_JaffaCakes118
Size

415KB
Sample

240810-y4na1aweqm
MD5

8787ab0122b63692d45c711c62a9ae5b
SHA1

08775e96e366e268baef80c5f24da6f3ca2b657e
SHA256

858c1a15ec73430b4d1dc2f3c3fa1365ba935c4d2d03718d290f71847e352935
SHA512

56f375b0ef196327a9c75714ab8435a5dd49d9bec8ff7073ba487bfacb407152ace3910b6107bba5d016fb7d89615c9ef161d3b074504bc28ffa3fdcee859592
SSDEEP

6144:qE5WuXs2oRlewgvbhHm+UQVgz2kSnzcuxuCQWHX9VPF15FfbXuZow1C7uDZ1w+:jqZE9G+UQVgz2kSouxuRgXFdSowb1

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8787ab0122b63692d45c711c62a9ae5b_JaffaCakes118
- Size
  
  415KB
- MD5
  
  8787ab0122b63692d45c711c62a9ae5b
- SHA1
  
  08775e96e366e268baef80c5f24da6f3ca2b657e
- SHA256
  
  858c1a15ec73430b4d1dc2f3c3fa1365ba935c4d2d03718d290f71847e352935
- SHA512
  
  56f375b0ef196327a9c75714ab8435a5dd49d9bec8ff7073ba487bfacb407152ace3910b6107bba5d016fb7d89615c9ef161d3b074504bc28ffa3fdcee859592
- SSDEEP
  
  6144:qE5WuXs2oRlewgvbhHm+UQVgz2kSnzcuxuCQWHX9VPF15FfbXuZow1C7uDZ1w+:jqZE9G+UQVgz2kSouxuRgXFdSowb1
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2