43c2a1af4ecf84f7e7002ee2a5c396bf8e35566e4a183d05e8a31a3621dda2af | Triage

Sharing

General

Target

9726e7b4e09a5b171c2d90ccdf53bf2a_JaffaCakes118
Size

395KB
Sample

240814-wx6snawfmb
MD5

9726e7b4e09a5b171c2d90ccdf53bf2a
SHA1

7f5383838e6852d192502a179069b2eb1f51e17f
SHA256

43c2a1af4ecf84f7e7002ee2a5c396bf8e35566e4a183d05e8a31a3621dda2af
SHA512

1197fcdadf21c5ffabae154522e2c2fdeacc7d807282ec141824064fc6451f90179408322c579680782719b84d1ac8788c3b4655fbaa1796f90cd1e19aa6df70
SSDEEP

12288:gutrzh9xOXkgGgkfznSnnj3EOhFqYR8E+stcxVo:gutr5OUgMf7Snj3EUwYRAstczo

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  9726e7b4e09a5b171c2d90ccdf53bf2a_JaffaCakes118
- Size
  
  395KB
- MD5
  
  9726e7b4e09a5b171c2d90ccdf53bf2a
- SHA1
  
  7f5383838e6852d192502a179069b2eb1f51e17f
- SHA256
  
  43c2a1af4ecf84f7e7002ee2a5c396bf8e35566e4a183d05e8a31a3621dda2af
- SHA512
  
  1197fcdadf21c5ffabae154522e2c2fdeacc7d807282ec141824064fc6451f90179408322c579680782719b84d1ac8788c3b4655fbaa1796f90cd1e19aa6df70
- SSDEEP
  
  12288:gutrzh9xOXkgGgkfznSnnj3EOhFqYR8E+stcxVo:gutr5OUgMf7Snj3EUwYRAstczo
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2