2deaac05cdf9d2972a8ad1923fb983e28a26995046965ad3e77c89e6efd7e1b7 | Triage

Sharing

General

Target

b5d86c1f82c242b687f4c9db1f72f77b_JaffaCakes118
Size

813KB
Sample

240822-bzlv2s1hnb
MD5

b5d86c1f82c242b687f4c9db1f72f77b
SHA1

be2787fc77cc4683496e8d9e8b314f3f52378592
SHA256

2deaac05cdf9d2972a8ad1923fb983e28a26995046965ad3e77c89e6efd7e1b7
SHA512

0323c8174cd673f2d730b737c9c90afcc008ac890e05098631368dad477d36126a6609ebbcb1a919a2c489d5e557f93125a6ea5012bbdaa83e377333fca5ff40
SSDEEP

12288:U5OeZeDuUlOeDuUl54/md1ykj4g1AkKQAKfj0OCVr9hOHaKJlNrr+:UIK5e4014g1AkKAnCVr3O6KJzS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b5d86c1f82c242b687f4c9db1f72f77b_JaffaCakes118
- Size
  
  813KB
- MD5
  
  b5d86c1f82c242b687f4c9db1f72f77b
- SHA1
  
  be2787fc77cc4683496e8d9e8b314f3f52378592
- SHA256
  
  2deaac05cdf9d2972a8ad1923fb983e28a26995046965ad3e77c89e6efd7e1b7
- SHA512
  
  0323c8174cd673f2d730b737c9c90afcc008ac890e05098631368dad477d36126a6609ebbcb1a919a2c489d5e557f93125a6ea5012bbdaa83e377333fca5ff40
- SSDEEP
  
  12288:U5OeZeDuUlOeDuUl54/md1ykj4g1AkKQAKfj0OCVr9hOHaKJlNrr+:UIK5e4014g1AkKAnCVr3O6KJzS
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2