7a88e37dcef1796b099cfd27a1d4137ae2988fe5510a87e3ceaec79b303a45a0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

be76586ac4f590b9f8279ae8ff368deb_JaffaCakes118
Size

15KB
Sample

240824-m77y2axard
MD5

be76586ac4f590b9f8279ae8ff368deb
SHA1

fbe98f7d5fe041fe6199031fce715534f9392883
SHA256

7a88e37dcef1796b099cfd27a1d4137ae2988fe5510a87e3ceaec79b303a45a0
SHA512

f1d593d0186e127e4e76fea063df4537e0d28fd42c364df475b6680fc95bb6eb97cc1683c997dcf0d27c06535174dbcc70fb4fb80aff5d82f480d5d6d948e736
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY8Ds:hDXWipuE+K3/SSHgxm8Ds

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  be76586ac4f590b9f8279ae8ff368deb_JaffaCakes118
- Size
  
  15KB
- MD5
  
  be76586ac4f590b9f8279ae8ff368deb
- SHA1
  
  fbe98f7d5fe041fe6199031fce715534f9392883
- SHA256
  
  7a88e37dcef1796b099cfd27a1d4137ae2988fe5510a87e3ceaec79b303a45a0
- SHA512
  
  f1d593d0186e127e4e76fea063df4537e0d28fd42c364df475b6680fc95bb6eb97cc1683c997dcf0d27c06535174dbcc70fb4fb80aff5d82f480d5d6d948e736
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY8Ds:hDXWipuE+K3/SSHgxm8Ds
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2