18ae7c452a06cfff196a81f58208da8161ab8f0487b2aa4e14ab4463e58fc964 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da17062f74a29d2a3467d395eed722ec_JaffaCakes118
Size

92KB
Sample

240911-lvvx9stdrj
MD5

da17062f74a29d2a3467d395eed722ec
SHA1

1e429bb79ef9e37408867524688a29249e18cd1c
SHA256

18ae7c452a06cfff196a81f58208da8161ab8f0487b2aa4e14ab4463e58fc964
SHA512

20a9609c2893ab96784118929cee5a732f3800ef3aa739da921de4723f6d0c703a9d163c97599a9931be6318f5c69c796c8bc9f4d0f1499c84de49d20fb4e48b
SSDEEP

1536:CmOtoPEe+vOxt0c5hfHP1qlmv60lHj4UraTPVPSPkP4PjPAkbohaWdV7lObdEZxr:2tCElA0c5Olmv60l3LbohaMAuwiNCP7Q

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  da17062f74a29d2a3467d395eed722ec_JaffaCakes118
- Size
  
  92KB
- MD5
  
  da17062f74a29d2a3467d395eed722ec
- SHA1
  
  1e429bb79ef9e37408867524688a29249e18cd1c
- SHA256
  
  18ae7c452a06cfff196a81f58208da8161ab8f0487b2aa4e14ab4463e58fc964
- SHA512
  
  20a9609c2893ab96784118929cee5a732f3800ef3aa739da921de4723f6d0c703a9d163c97599a9931be6318f5c69c796c8bc9f4d0f1499c84de49d20fb4e48b
- SSDEEP
  
  1536:CmOtoPEe+vOxt0c5hfHP1qlmv60lHj4UraTPVPSPkP4PjPAkbohaWdV7lObdEZxr:2tCElA0c5Olmv60l3LbohaMAuwiNCP7Q
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2