f06d71452134f939fbb6bdac83a4af1cf473610345072e4c3de6094bc89a67d6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ce6ab2a1c9395953ec4a0bce37750542_JaffaCakes118
Size

6.4MB
Sample

240906-cqal4a1dqa
MD5

ce6ab2a1c9395953ec4a0bce37750542
SHA1

7e000a4fecc8c421ddc365590381ed8fdf1ceb1e
SHA256

f06d71452134f939fbb6bdac83a4af1cf473610345072e4c3de6094bc89a67d6
SHA512

61d46ca3cd83c829063f13ff506b1c1d7f057cbfcb4ad14a1bb704207f768ff41a86143a1c9a579777170a7e90c9dae00aec398e193b2e1a50c687d51400369a
SSDEEP

196608:bP1W25FUskdeysJXA/Ogh+BBQ9Hiw4aVo:bk2Xy6A/OcdViYVo

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ce6ab2a1c9395953ec4a0bce37750542_JaffaCakes118
- Size
  
  6.4MB
- MD5
  
  ce6ab2a1c9395953ec4a0bce37750542
- SHA1
  
  7e000a4fecc8c421ddc365590381ed8fdf1ceb1e
- SHA256
  
  f06d71452134f939fbb6bdac83a4af1cf473610345072e4c3de6094bc89a67d6
- SHA512
  
  61d46ca3cd83c829063f13ff506b1c1d7f057cbfcb4ad14a1bb704207f768ff41a86143a1c9a579777170a7e90c9dae00aec398e193b2e1a50c687d51400369a
- SSDEEP
  
  196608:bP1W25FUskdeysJXA/Ogh+BBQ9Hiw4aVo:bk2Xy6A/OcdViYVo
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2