0b69560ba83f4fcc6313e82ec52bd20877bd521da66adb241afbfdc553ee3313 | Triage

Sharing

General

Target

a064d9addd308651c7c9b01a6a46a0fa_JaffaCakes118
Size

829KB
Sample

240816-3lw8eaxfrr
MD5

a064d9addd308651c7c9b01a6a46a0fa
SHA1

b220972d2718615d34f8b2cf93662e4f913b1256
SHA256

0b69560ba83f4fcc6313e82ec52bd20877bd521da66adb241afbfdc553ee3313
SHA512

5f90a27978fae1ea159b9fe4a723e5e23416b220ba89f62d0dfd2542ae9ab17d597727f39afa0d0e4a3e67beeed1f163953fabfa36750f4689b93eee69321ee1
SSDEEP

24576:b1dlZo5KGL77jrD34y+svBhyVnO9//Y2vo5lMpJpuN6/h6TQoMB:b1dlZoKGLD34XsSVAINcJ84Z6U

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a064d9addd308651c7c9b01a6a46a0fa_JaffaCakes118
- Size
  
  829KB
- MD5
  
  a064d9addd308651c7c9b01a6a46a0fa
- SHA1
  
  b220972d2718615d34f8b2cf93662e4f913b1256
- SHA256
  
  0b69560ba83f4fcc6313e82ec52bd20877bd521da66adb241afbfdc553ee3313
- SHA512
  
  5f90a27978fae1ea159b9fe4a723e5e23416b220ba89f62d0dfd2542ae9ab17d597727f39afa0d0e4a3e67beeed1f163953fabfa36750f4689b93eee69321ee1
- SSDEEP
  
  24576:b1dlZo5KGL77jrD34y+svBhyVnO9//Y2vo5lMpJpuN6/h6TQoMB:b1dlZoKGLD34XsSVAINcJ84Z6U
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2