7cb8649cd03d6e2175812e84fddefedd3dc0421950e5e3f368ef3939ef6a31d0 | Triage

Sharing

General

Target

ce93251e870fb8f4518f483378bd25a1_JaffaCakes118
Size

14KB
Sample

240906-ebxjesthpr
MD5

ce93251e870fb8f4518f483378bd25a1
SHA1

0ac96645fd5275159cf6234446eb9139ae0190fd
SHA256

7cb8649cd03d6e2175812e84fddefedd3dc0421950e5e3f368ef3939ef6a31d0
SHA512

036d6a3523a6174ed2297d6c1d331b5b236bed5f75ce66fbaee7b18a665b095eaa587fd18d02c6fe00b039a4227ffc2264407e6e0c572689ba66db809805a447
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYDP1:hDXWipuE+K3/SSHgxmD9

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ce93251e870fb8f4518f483378bd25a1_JaffaCakes118
- Size
  
  14KB
- MD5
  
  ce93251e870fb8f4518f483378bd25a1
- SHA1
  
  0ac96645fd5275159cf6234446eb9139ae0190fd
- SHA256
  
  7cb8649cd03d6e2175812e84fddefedd3dc0421950e5e3f368ef3939ef6a31d0
- SHA512
  
  036d6a3523a6174ed2297d6c1d331b5b236bed5f75ce66fbaee7b18a665b095eaa587fd18d02c6fe00b039a4227ffc2264407e6e0c572689ba66db809805a447
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYDP1:hDXWipuE+K3/SSHgxmD9
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2