6304b1f3bfd73e1f671b588af77fff4272e63df712e330471fb251ddaf2d461b | Triage

Sharing

General

Target

8b2284f1aac8ec40771713335aaa13a5_JaffaCakes118
Size

1002KB
Sample

240811-t69jssxfrq
MD5

8b2284f1aac8ec40771713335aaa13a5
SHA1

186d8988bcf015d1f1a1c21391476450ebfc7a1e
SHA256

6304b1f3bfd73e1f671b588af77fff4272e63df712e330471fb251ddaf2d461b
SHA512

23893134b93062465e7c6fafca3fd9d6f52a298786b2d417fbeb0f81cb2799a70e203c376434fb0d1b7605aba66defdb95444d5598776ce454ebde42e7a66d70
SSDEEP

12288:zhDMjlZ8RZ7QwkMSiakDdUlftrIzoJ3fVR1hj8bgn8mYvTbV9rwvjlDtghOcv:5PRZAiakEfdSQhCgn85vTJ9iwOcv

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8b2284f1aac8ec40771713335aaa13a5_JaffaCakes118
- Size
  
  1002KB
- MD5
  
  8b2284f1aac8ec40771713335aaa13a5
- SHA1
  
  186d8988bcf015d1f1a1c21391476450ebfc7a1e
- SHA256
  
  6304b1f3bfd73e1f671b588af77fff4272e63df712e330471fb251ddaf2d461b
- SHA512
  
  23893134b93062465e7c6fafca3fd9d6f52a298786b2d417fbeb0f81cb2799a70e203c376434fb0d1b7605aba66defdb95444d5598776ce454ebde42e7a66d70
- SSDEEP
  
  12288:zhDMjlZ8RZ7QwkMSiakDdUlftrIzoJ3fVR1hj8bgn8mYvTbV9rwvjlDtghOcv:5PRZAiakEfdSQhCgn85vTJ9iwOcv
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2