2de5e45ce0349f4642306f4ee495a091473930fdc5eecb8ebcfa4f8d7dd949c7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abd96c414be0ff455d720cd5041b4807_JaffaCakes118
Size

15KB
Sample

240819-vmfcaawcka
MD5

abd96c414be0ff455d720cd5041b4807
SHA1

9590ecd0f94702df0149a83ce9f8d84f56617d79
SHA256

2de5e45ce0349f4642306f4ee495a091473930fdc5eecb8ebcfa4f8d7dd949c7
SHA512

88d5e375488df8b0cd93422cf9a0ac4a9c885fdefb9f22975b8022b12a8690e88c39d8a243cf602d5e1873ab45b7d05aee0c104855254bb32ab2bfcd80e9a4d9
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMxu:hDXWipuE+K3/SSHgxmHs

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  abd96c414be0ff455d720cd5041b4807_JaffaCakes118
- Size
  
  15KB
- MD5
  
  abd96c414be0ff455d720cd5041b4807
- SHA1
  
  9590ecd0f94702df0149a83ce9f8d84f56617d79
- SHA256
  
  2de5e45ce0349f4642306f4ee495a091473930fdc5eecb8ebcfa4f8d7dd949c7
- SHA512
  
  88d5e375488df8b0cd93422cf9a0ac4a9c885fdefb9f22975b8022b12a8690e88c39d8a243cf602d5e1873ab45b7d05aee0c104855254bb32ab2bfcd80e9a4d9
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMxu:hDXWipuE+K3/SSHgxmHs
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2