b040904159529cac83fc145a87c2b8c725b77099475b4766bd86d9f9ebac407b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d0abef27e179dae0fe19716472987c1c_JaffaCakes118
Size

2.6MB
Sample

240906-3tq2cstfpl
MD5

d0abef27e179dae0fe19716472987c1c
SHA1

b21051dc686b55147d2659884ed9112c66f0ac04
SHA256

b040904159529cac83fc145a87c2b8c725b77099475b4766bd86d9f9ebac407b
SHA512

9605a230a823a29b8a65b0585f4ad7a351dade932fd5b5933edd2c28589f7e4983defd46b6402aaf45a832c9d470d2d6026040144f0b773041c6ade2960903b8
SSDEEP

49152:oDy796EvMtTx435MtV+On5vMNbcwO6m2zGKYraTh+ZTOdFrxviiBI1ri:f7AEvgVOA5WbcoHzGlr8h+5q4il

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d0abef27e179dae0fe19716472987c1c_JaffaCakes118
- Size
  
  2.6MB
- MD5
  
  d0abef27e179dae0fe19716472987c1c
- SHA1
  
  b21051dc686b55147d2659884ed9112c66f0ac04
- SHA256
  
  b040904159529cac83fc145a87c2b8c725b77099475b4766bd86d9f9ebac407b
- SHA512
  
  9605a230a823a29b8a65b0585f4ad7a351dade932fd5b5933edd2c28589f7e4983defd46b6402aaf45a832c9d470d2d6026040144f0b773041c6ade2960903b8
- SSDEEP
  
  49152:oDy796EvMtTx435MtV+On5vMNbcwO6m2zGKYraTh+ZTOdFrxviiBI1ri:f7AEvgVOA5WbcoHzGlr8h+5q4il
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2