979b8e2d914c3a449e7edb832eaaec40ed6b721f4a48efd8c196114e7bfb3608 | Triage

Sharing

General

Target

89d6d7ad138daf08750263d161a63655_JaffaCakes118
Size

7.1MB
Sample

240811-ldxersxglg
MD5

89d6d7ad138daf08750263d161a63655
SHA1

776016cb920e7143baed1a8e39462809a342a945
SHA256

979b8e2d914c3a449e7edb832eaaec40ed6b721f4a48efd8c196114e7bfb3608
SHA512

8ad10ad5f63ca9a5968578032f8ec0a2f581e0a5f38f7dc96f2e6cf40645eea8d3c5f4727d6c4ce5f116b846dcfbaecee39e25a10a67148dc0de9b30e1187a09
SSDEEP

49152:pMIumu68CLfegNTX3SdgdOBoS52GDTz58XJWTG1K/mqucutXSr/oOA3SChiyB9S/:C5n6xegVfQTzWJsut9Q/nqEJ4ev

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  89d6d7ad138daf08750263d161a63655_JaffaCakes118
- Size
  
  7.1MB
- MD5
  
  89d6d7ad138daf08750263d161a63655
- SHA1
  
  776016cb920e7143baed1a8e39462809a342a945
- SHA256
  
  979b8e2d914c3a449e7edb832eaaec40ed6b721f4a48efd8c196114e7bfb3608
- SHA512
  
  8ad10ad5f63ca9a5968578032f8ec0a2f581e0a5f38f7dc96f2e6cf40645eea8d3c5f4727d6c4ce5f116b846dcfbaecee39e25a10a67148dc0de9b30e1187a09
- SSDEEP
  
  49152:pMIumu68CLfegNTX3SdgdOBoS52GDTz58XJWTG1K/mqucutXSr/oOA3SChiyB9S/:C5n6xegVfQTzWJsut9Q/nqEJ4ev
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2