0b4ea8653179e898e887dff8b05fa65e5354a1e44bb35cb13ee10b9a4f63399e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b881d222cdafe9c5230cf1cf6b7fe79f_JaffaCakes118
Size

943KB
Sample

240822-v41pjs1grp
MD5

b881d222cdafe9c5230cf1cf6b7fe79f
SHA1

748eda5ec816825412a09af2c60d7883ffe1cbd6
SHA256

0b4ea8653179e898e887dff8b05fa65e5354a1e44bb35cb13ee10b9a4f63399e
SHA512

ec63c0def13826024f438fa621f9439c3d067096e14c354c848cf77f4c8a0bfff109dfb02fdd905495b349644c6e56e54e81475046c15b917e5e1b56640cd1e7
SSDEEP

12288:B9uF2OPlgCxbUuqEolqhlBG0EZRYx35Ua8wvJfiU3us5NhOblYNTwUkVQ+PYJJai:B9uFhCwUuqDluBMfEhJX3z5mKhwbLe7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b881d222cdafe9c5230cf1cf6b7fe79f_JaffaCakes118
- Size
  
  943KB
- MD5
  
  b881d222cdafe9c5230cf1cf6b7fe79f
- SHA1
  
  748eda5ec816825412a09af2c60d7883ffe1cbd6
- SHA256
  
  0b4ea8653179e898e887dff8b05fa65e5354a1e44bb35cb13ee10b9a4f63399e
- SHA512
  
  ec63c0def13826024f438fa621f9439c3d067096e14c354c848cf77f4c8a0bfff109dfb02fdd905495b349644c6e56e54e81475046c15b917e5e1b56640cd1e7
- SSDEEP
  
  12288:B9uF2OPlgCxbUuqEolqhlBG0EZRYx35Ua8wvJfiU3us5NhOblYNTwUkVQ+PYJJai:B9uFhCwUuqDluBMfEhJX3z5mKhwbLe7
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2