38a8c7a5cca896f9d484eec7573787ab66e3cb4d0babda8529901498fe396935 | Triage

Sharing

General

Target

d2a487fbe4952fa66ba9ffa14d53ccae_JaffaCakes118
Size

14KB
Sample

240907-xtpkmszclq
MD5

d2a487fbe4952fa66ba9ffa14d53ccae
SHA1

5439256765ec5ed0dd065ec821c83e1ea5a1ec14
SHA256

38a8c7a5cca896f9d484eec7573787ab66e3cb4d0babda8529901498fe396935
SHA512

5382e39d2f5c0bc5c25b0aa2b835e69b6da640bdbd5db9193b965940908810b0b53fec50b12875f3882540d5aa9289abaa5271afdf9f8b62128d5fad33be2706
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4hXp:hDXWipuE+K3/SSHgxmqp

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d2a487fbe4952fa66ba9ffa14d53ccae_JaffaCakes118
- Size
  
  14KB
- MD5
  
  d2a487fbe4952fa66ba9ffa14d53ccae
- SHA1
  
  5439256765ec5ed0dd065ec821c83e1ea5a1ec14
- SHA256
  
  38a8c7a5cca896f9d484eec7573787ab66e3cb4d0babda8529901498fe396935
- SHA512
  
  5382e39d2f5c0bc5c25b0aa2b835e69b6da640bdbd5db9193b965940908810b0b53fec50b12875f3882540d5aa9289abaa5271afdf9f8b62128d5fad33be2706
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4hXp:hDXWipuE+K3/SSHgxmqp
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2