7f6401d66e682fd7fe66553025cdfe162fdd66c97c4f7859bf5638e0296eca33 | Triage

Sharing

General

Target

968cc43cf14e7a03d2ee0ef9e8c60b48_JaffaCakes118
Size

2.6MB
Sample

240814-r9f1jsyarb
MD5

968cc43cf14e7a03d2ee0ef9e8c60b48
SHA1

255ec919e22d00e019da4ea464a111a63727f11c
SHA256

7f6401d66e682fd7fe66553025cdfe162fdd66c97c4f7859bf5638e0296eca33
SHA512

5e6d76e87f208361f0094abd05fb77bf19f66268f731c5a0367f297d1afe23511968ca878bb022ade84f131bd8a7db3b49b941d7601b19b340134c2516398def
SSDEEP

49152:oDy796EvMtTx435MtV+On5vMNbcwO6m2zGKYraTh+ZTOdFrxviiBI1ry:f7AEvgVOA5WbcoHzGlr8h+5q4il

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  968cc43cf14e7a03d2ee0ef9e8c60b48_JaffaCakes118
- Size
  
  2.6MB
- MD5
  
  968cc43cf14e7a03d2ee0ef9e8c60b48
- SHA1
  
  255ec919e22d00e019da4ea464a111a63727f11c
- SHA256
  
  7f6401d66e682fd7fe66553025cdfe162fdd66c97c4f7859bf5638e0296eca33
- SHA512
  
  5e6d76e87f208361f0094abd05fb77bf19f66268f731c5a0367f297d1afe23511968ca878bb022ade84f131bd8a7db3b49b941d7601b19b340134c2516398def
- SSDEEP
  
  49152:oDy796EvMtTx435MtV+On5vMNbcwO6m2zGKYraTh+ZTOdFrxviiBI1ry:f7AEvgVOA5WbcoHzGlr8h+5q4il
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2