5a7fea2951fc0d8182ad23d8f424e6f286ea77979a4e904321f165921d85d385 | Triage

Sharing

General

Target

aa86e3b979005aef3d6ba087a699514b_JaffaCakes118
Size

540KB
Sample

240819-lq41daxbmc
MD5

aa86e3b979005aef3d6ba087a699514b
SHA1

7b1915ef0d0b3caaaa0040f7b80541414caa0cc5
SHA256

5a7fea2951fc0d8182ad23d8f424e6f286ea77979a4e904321f165921d85d385
SHA512

f122728ddce70c6b0eb87c50ac55b9682994a45221614ff5f5f7fde551777dbf7102975d9645b5717bd5b7068e84fd46156a1b836232759a016799d45424af7e
SSDEEP

12288:bYoDL647vcNF5BBYCIcF9k0uJ+xVtPL4CscggpCgd:bZ3mk8kQxTP0CdgJG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  aa86e3b979005aef3d6ba087a699514b_JaffaCakes118
- Size
  
  540KB
- MD5
  
  aa86e3b979005aef3d6ba087a699514b
- SHA1
  
  7b1915ef0d0b3caaaa0040f7b80541414caa0cc5
- SHA256
  
  5a7fea2951fc0d8182ad23d8f424e6f286ea77979a4e904321f165921d85d385
- SHA512
  
  f122728ddce70c6b0eb87c50ac55b9682994a45221614ff5f5f7fde551777dbf7102975d9645b5717bd5b7068e84fd46156a1b836232759a016799d45424af7e
- SSDEEP
  
  12288:bYoDL647vcNF5BBYCIcF9k0uJ+xVtPL4CscggpCgd:bZ3mk8kQxTP0CdgJG
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2