8e19a48a663fcf8d3282c7fa4c99d5a1bfb6d22cec482d9e3cca4bfa0350f6cc | Triage

Sharing

General

Target

949256b3ebba498f3347b5f1da8cd954_JaffaCakes118
Size

14KB
Sample

240813-y1akqsydkl
MD5

949256b3ebba498f3347b5f1da8cd954
SHA1

6a861a4f011f6da8fb56cc7af3f0f671dba013e9
SHA256

8e19a48a663fcf8d3282c7fa4c99d5a1bfb6d22cec482d9e3cca4bfa0350f6cc
SHA512

55740efb0ac4a3e6fcaf1449d5507d223d3e969401abb614db6daed874caea0b5811a5b7c0383c3af606f61ed51802c4e59ed34d8ca149583b7065db56aff763
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhZ:hDXWipuE+K3/SSHgxD

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  949256b3ebba498f3347b5f1da8cd954_JaffaCakes118
- Size
  
  14KB
- MD5
  
  949256b3ebba498f3347b5f1da8cd954
- SHA1
  
  6a861a4f011f6da8fb56cc7af3f0f671dba013e9
- SHA256
  
  8e19a48a663fcf8d3282c7fa4c99d5a1bfb6d22cec482d9e3cca4bfa0350f6cc
- SHA512
  
  55740efb0ac4a3e6fcaf1449d5507d223d3e969401abb614db6daed874caea0b5811a5b7c0383c3af606f61ed51802c4e59ed34d8ca149583b7065db56aff763
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhZ:hDXWipuE+K3/SSHgxD
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2