2364159ff1ed7b8cf796418f4fef5030e5c44a33f6a05e7d36a3f3b66591fb35 | Triage

Sharing

General

Target

c908d118a59eaf14fa542c19c30fd3b6_JaffaCakes118
Size

349KB
Sample

240829-r5jkwaygnm
MD5

c908d118a59eaf14fa542c19c30fd3b6
SHA1

bb893991938205eba1d4472fcee3b107038aead0
SHA256

2364159ff1ed7b8cf796418f4fef5030e5c44a33f6a05e7d36a3f3b66591fb35
SHA512

726b9f4dbb8c673f216eade7cdd07310394ec6d17bb6bec7778fb02de7bbd80dbab7671c39491631b4797bcd32c2d596d86de5f7b0163ff55a3d4a524ce4cd25
SSDEEP

6144:GsJ/ztsM7fMcLxmH2moRexPxxe+ybgslUZhcgR5AMXMGKcJBX:LFbMc1mH2NQVu+yt6ZhcgR57Xs4

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c908d118a59eaf14fa542c19c30fd3b6_JaffaCakes118
- Size
  
  349KB
- MD5
  
  c908d118a59eaf14fa542c19c30fd3b6
- SHA1
  
  bb893991938205eba1d4472fcee3b107038aead0
- SHA256
  
  2364159ff1ed7b8cf796418f4fef5030e5c44a33f6a05e7d36a3f3b66591fb35
- SHA512
  
  726b9f4dbb8c673f216eade7cdd07310394ec6d17bb6bec7778fb02de7bbd80dbab7671c39491631b4797bcd32c2d596d86de5f7b0163ff55a3d4a524ce4cd25
- SSDEEP
  
  6144:GsJ/ztsM7fMcLxmH2moRexPxxe+ybgslUZhcgR5AMXMGKcJBX:LFbMc1mH2NQVu+yt6ZhcgR57Xs4
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2