d50f66277ccd8de39fa218da5e90c7aec6544ed562bddddb90b1456b5cd95bce | Triage

Sharing

General

Target

ad4700a8f66563725c5658312c76df66_JaffaCakes118
Size

233KB
Sample

240820-a9b8xsvfrh
MD5

ad4700a8f66563725c5658312c76df66
SHA1

4b0088d78db9176ca06bc32e6795ed612a20400a
SHA256

d50f66277ccd8de39fa218da5e90c7aec6544ed562bddddb90b1456b5cd95bce
SHA512

de318c54a97b498f7b42ea1acf0dcda4507cb2643d9393446806b6b4bcbf6b034523c52cb1cf01404fe829dcf471c236db2cccff038ecacc34c4d2eadf7d1783
SSDEEP

384:G0lsrS5kidbjyD0TwYRUvy4qVVgDUjDK0SZfMZgi63N8EmacD1B4196UtMyKjCMu:5ll5p375WUfAVnmUcD/ELtM/jTnSF2K

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ad4700a8f66563725c5658312c76df66_JaffaCakes118
- Size
  
  233KB
- MD5
  
  ad4700a8f66563725c5658312c76df66
- SHA1
  
  4b0088d78db9176ca06bc32e6795ed612a20400a
- SHA256
  
  d50f66277ccd8de39fa218da5e90c7aec6544ed562bddddb90b1456b5cd95bce
- SHA512
  
  de318c54a97b498f7b42ea1acf0dcda4507cb2643d9393446806b6b4bcbf6b034523c52cb1cf01404fe829dcf471c236db2cccff038ecacc34c4d2eadf7d1783
- SSDEEP
  
  384:G0lsrS5kidbjyD0TwYRUvy4qVVgDUjDK0SZfMZgi63N8EmacD1B4196UtMyKjCMu:5ll5p375WUfAVnmUcD/ELtM/jTnSF2K
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2