9fcc69bbd09d12dd9e083399a5eaa0cfd1fa913495b93ac5cf79746ab29fb696 | Triage

Sharing

General

Target

be911940cfa1e6e61e351673e04e87fa_JaffaCakes118
Size

23KB
Sample

240824-pdsy5ayhrc
MD5

be911940cfa1e6e61e351673e04e87fa
SHA1

63ba7d27c0ddf0a5ec74227dc43d4eff05f5c46b
SHA256

9fcc69bbd09d12dd9e083399a5eaa0cfd1fa913495b93ac5cf79746ab29fb696
SHA512

cdff5c4dd1d64877fed048c0a157dc796b5a9006c94cb3a7cc6acb9bc55e120c273880ecd4e3cf124af4c36b50564d28e971996f4816869c91d92a8a5eb9795a
SSDEEP

384:+2F7GPfJnG3ZlQjQmjJSpzB+gujxqR9lHmzTGf8r:+2F7afJQzB+guMjQzTGf6

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  be911940cfa1e6e61e351673e04e87fa_JaffaCakes118
- Size
  
  23KB
- MD5
  
  be911940cfa1e6e61e351673e04e87fa
- SHA1
  
  63ba7d27c0ddf0a5ec74227dc43d4eff05f5c46b
- SHA256
  
  9fcc69bbd09d12dd9e083399a5eaa0cfd1fa913495b93ac5cf79746ab29fb696
- SHA512
  
  cdff5c4dd1d64877fed048c0a157dc796b5a9006c94cb3a7cc6acb9bc55e120c273880ecd4e3cf124af4c36b50564d28e971996f4816869c91d92a8a5eb9795a
- SSDEEP
  
  384:+2F7GPfJnG3ZlQjQmjJSpzB+gujxqR9lHmzTGf8r:+2F7afJQzB+guMjQzTGf6
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2