5bb60ff28cf427d0b89158a68b8f59330f0eca06459982ebe96f29f57bf28630 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

965fd13d3420cb83af77b22750db15aa_JaffaCakes118
Size

14KB
Sample

240814-q84vjswbmd
MD5

965fd13d3420cb83af77b22750db15aa
SHA1

e107db49e4e45093cb30ed4aa71724714500ef69
SHA256

5bb60ff28cf427d0b89158a68b8f59330f0eca06459982ebe96f29f57bf28630
SHA512

e91fffc249c4072373196f2995b6354dec8ee8548d30431effc38875eca20dba7a19038bf46673be2ba77dfd4c3a4c549d13f2f8602d1a6dbd51bd56c198317b
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhi6o:hDXWipuE+K3/SSHgxC

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  965fd13d3420cb83af77b22750db15aa_JaffaCakes118
- Size
  
  14KB
- MD5
  
  965fd13d3420cb83af77b22750db15aa
- SHA1
  
  e107db49e4e45093cb30ed4aa71724714500ef69
- SHA256
  
  5bb60ff28cf427d0b89158a68b8f59330f0eca06459982ebe96f29f57bf28630
- SHA512
  
  e91fffc249c4072373196f2995b6354dec8ee8548d30431effc38875eca20dba7a19038bf46673be2ba77dfd4c3a4c549d13f2f8602d1a6dbd51bd56c198317b
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhi6o:hDXWipuE+K3/SSHgxC
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2