3f6d1aea323911ea0ad5bae017401970dfb0db65b223a35fe412283c2cdfcd0e | Triage

Sharing

General

Target

d505ac1da6fd791eb4e1f0b2fbd3b85b_JaffaCakes118
Size

960KB
Sample

240908-yn1w6avgph
MD5

d505ac1da6fd791eb4e1f0b2fbd3b85b
SHA1

6d549b22969f0e4cb0e2a7cfdaf154faaa653b02
SHA256

3f6d1aea323911ea0ad5bae017401970dfb0db65b223a35fe412283c2cdfcd0e
SHA512

f206a5fc9398cce88b0d560e8a0243138e3cc126d576646c6cf39df87885a59691743bbe6e07c3c8db5676e05c5c505470a4c8938c81c3b10740026e8305ead5
SSDEEP

24576:BeuFhCwUuqDluBMfEhJX3z5mKhwbLeRCS:9hxqDosEL3F/w+MS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d505ac1da6fd791eb4e1f0b2fbd3b85b_JaffaCakes118
- Size
  
  960KB
- MD5
  
  d505ac1da6fd791eb4e1f0b2fbd3b85b
- SHA1
  
  6d549b22969f0e4cb0e2a7cfdaf154faaa653b02
- SHA256
  
  3f6d1aea323911ea0ad5bae017401970dfb0db65b223a35fe412283c2cdfcd0e
- SHA512
  
  f206a5fc9398cce88b0d560e8a0243138e3cc126d576646c6cf39df87885a59691743bbe6e07c3c8db5676e05c5c505470a4c8938c81c3b10740026e8305ead5
- SSDEEP
  
  24576:BeuFhCwUuqDluBMfEhJX3z5mKhwbLeRCS:9hxqDosEL3F/w+MS
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2