31d4bf0c500737a1ce00c203e82d9d8592d009b819f48064e4fb48b22fa874e6 | Triage

Sharing

General

Target

b73e8dd4ef7d08455b5fff63948f322b_JaffaCakes118
Size

14KB
Sample

240822-l87tzs1dnd
MD5

b73e8dd4ef7d08455b5fff63948f322b
SHA1

498e6c84c3ee30c663e3b6fd80ab35ca0a111aaa
SHA256

31d4bf0c500737a1ce00c203e82d9d8592d009b819f48064e4fb48b22fa874e6
SHA512

45225cdc222dc1bc311c90953f725459fb45e10c4dc240ba8c4671de2f96b4da4d56476c1ee86c7e628bdf3e38361bf37901c4dc1c7fd500168ad29805c7ac31
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhD88:hDXWipuE+K3/SSHgxtT

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b73e8dd4ef7d08455b5fff63948f322b_JaffaCakes118
- Size
  
  14KB
- MD5
  
  b73e8dd4ef7d08455b5fff63948f322b
- SHA1
  
  498e6c84c3ee30c663e3b6fd80ab35ca0a111aaa
- SHA256
  
  31d4bf0c500737a1ce00c203e82d9d8592d009b819f48064e4fb48b22fa874e6
- SHA512
  
  45225cdc222dc1bc311c90953f725459fb45e10c4dc240ba8c4671de2f96b4da4d56476c1ee86c7e628bdf3e38361bf37901c4dc1c7fd500168ad29805c7ac31
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhD88:hDXWipuE+K3/SSHgxtT
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2