8b632aaa2925893a8ee53fc66527f1040f17a163bd332ce62f58d061c95625f9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a44c890ef25a8d03d75155f733e2cef5_JaffaCakes118
Size

13KB
Sample

240817-1vkvmayhqb
MD5

a44c890ef25a8d03d75155f733e2cef5
SHA1

f17973db0d860dc28e762d0faf468a678e5b48bb
SHA256

8b632aaa2925893a8ee53fc66527f1040f17a163bd332ce62f58d061c95625f9
SHA512

2590ccc706c2acb8ba417770d16c16e1403fdec355c3f7d784a0378aac1626a22082dff39c2e1c23e3684c1219bb47de98d06d8633e82499426997081a6f3e0f
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yht:hDXWipuE+K3/SSHgxz

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a44c890ef25a8d03d75155f733e2cef5_JaffaCakes118
- Size
  
  13KB
- MD5
  
  a44c890ef25a8d03d75155f733e2cef5
- SHA1
  
  f17973db0d860dc28e762d0faf468a678e5b48bb
- SHA256
  
  8b632aaa2925893a8ee53fc66527f1040f17a163bd332ce62f58d061c95625f9
- SHA512
  
  2590ccc706c2acb8ba417770d16c16e1403fdec355c3f7d784a0378aac1626a22082dff39c2e1c23e3684c1219bb47de98d06d8633e82499426997081a6f3e0f
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yht:hDXWipuE+K3/SSHgxz
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2