44a0089cc73f80028469eada5582062bb932ebc937187b3b8315e293273c70a7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8d233ea648ba2fd2d4e48f54928c6f38_JaffaCakes118
Size

725KB
Sample

240812-d2pe3axerb
MD5

8d233ea648ba2fd2d4e48f54928c6f38
SHA1

bc97f911f09d69685f96d65b9970edbc85f9c62a
SHA256

44a0089cc73f80028469eada5582062bb932ebc937187b3b8315e293273c70a7
SHA512

341553c677301c0e6611b95e3b1220c18dfd50dc9ffebf265509e9da9f8f43502c6c054d53215ea44e894d75b2a76fc2905eb1f4dabb497b7f5d9c05f5c14194
SSDEEP

12288:Yn4Z/iFhVOs7SZ0qAvQrv1PPkaxG4kEfUvz9LOnUk5w5u5uM2MynHK:24xoh1o0mvlk+G4VUvz9itwKT2Myn

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8d233ea648ba2fd2d4e48f54928c6f38_JaffaCakes118
- Size
  
  725KB
- MD5
  
  8d233ea648ba2fd2d4e48f54928c6f38
- SHA1
  
  bc97f911f09d69685f96d65b9970edbc85f9c62a
- SHA256
  
  44a0089cc73f80028469eada5582062bb932ebc937187b3b8315e293273c70a7
- SHA512
  
  341553c677301c0e6611b95e3b1220c18dfd50dc9ffebf265509e9da9f8f43502c6c054d53215ea44e894d75b2a76fc2905eb1f4dabb497b7f5d9c05f5c14194
- SSDEEP
  
  12288:Yn4Z/iFhVOs7SZ0qAvQrv1PPkaxG4kEfUvz9LOnUk5w5u5uM2MynHK:24xoh1o0mvlk+G4VUvz9itwKT2Myn
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2