8c2f939e420cf3362e1105a36f9e5ef7ff17ef1fa6dc252a7284ddc07d5a8c21 | Triage

Sharing

General

Target

8b435334e13e9a27dd172ef3c52f6c24_JaffaCakes118
Size

14KB
Sample

240811-vv4d3stcra
MD5

8b435334e13e9a27dd172ef3c52f6c24
SHA1

20ccf41bd50dc86d6201ddbdc7f8371d537e8f1b
SHA256

8c2f939e420cf3362e1105a36f9e5ef7ff17ef1fa6dc252a7284ddc07d5a8c21
SHA512

b8b4c31e8546d1cd3d11575939684502271d196fadb819570eb8e3618308c543c92e7f0e2a0a88628c4531db5c42a1c65999cf7dea099ca6a778eed09e6cf183
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhS0:hDXWipuE+K3/SSHgx00

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8b435334e13e9a27dd172ef3c52f6c24_JaffaCakes118
- Size
  
  14KB
- MD5
  
  8b435334e13e9a27dd172ef3c52f6c24
- SHA1
  
  20ccf41bd50dc86d6201ddbdc7f8371d537e8f1b
- SHA256
  
  8c2f939e420cf3362e1105a36f9e5ef7ff17ef1fa6dc252a7284ddc07d5a8c21
- SHA512
  
  b8b4c31e8546d1cd3d11575939684502271d196fadb819570eb8e3618308c543c92e7f0e2a0a88628c4531db5c42a1c65999cf7dea099ca6a778eed09e6cf183
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhS0:hDXWipuE+K3/SSHgx00
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2