ce146d9aa8ed8313e433b54b59542efcc11c1f9177d349c392421860d7679c31 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8cff6b6251779a3ac5ab84c1a6e2881c_JaffaCakes118
Size

1.8MB
Sample

240812-c7khma1glk
MD5

8cff6b6251779a3ac5ab84c1a6e2881c
SHA1

46514222bafba71acfd84827ac8e3ea24569a0c4
SHA256

ce146d9aa8ed8313e433b54b59542efcc11c1f9177d349c392421860d7679c31
SHA512

e6990462f581ee9fdf4937592f44c7b11b26212ac27a19b7010cc88b53a33735717a1e5702b3bb470aca9efe5ff64f9ccb38bb1cc33523d684bf7fb2c7562d08
SSDEEP

24576:smAlLaSO5ft1UgZQxnK+kEbzPglRbcKblr0iu0InQflkjXG3/:sRaSmpWKM+RxpulKuzo

Score

8^/10

discovery

Malware Config

Targets

- Target
  
  8cff6b6251779a3ac5ab84c1a6e2881c_JaffaCakes118
- Size
  
  1.8MB
- MD5
  
  8cff6b6251779a3ac5ab84c1a6e2881c
- SHA1
  
  46514222bafba71acfd84827ac8e3ea24569a0c4
- SHA256
  
  ce146d9aa8ed8313e433b54b59542efcc11c1f9177d349c392421860d7679c31
- SHA512
  
  e6990462f581ee9fdf4937592f44c7b11b26212ac27a19b7010cc88b53a33735717a1e5702b3bb470aca9efe5ff64f9ccb38bb1cc33523d684bf7fb2c7562d08
- SSDEEP
  
  24576:smAlLaSO5ft1UgZQxnK+kEbzPglRbcKblr0iu0InQflkjXG3/:sRaSmpWKM+RxpulKuzo
Score

8^/10

discovery
- Drops file in Drivers directory
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2