256076a5d43bd0e42ae34416849e8165eeb17b605a4c286dfb06a97940d27fd8 | Triage

Sharing

General

Target

db836aeab3ae148a9324be52f6134055_JaffaCakes118
Size

935KB
Sample

240912-a2xvnascqf
MD5

db836aeab3ae148a9324be52f6134055
SHA1

3fe1ac7100540db00952bd36d5b3a28ff93b6d17
SHA256

256076a5d43bd0e42ae34416849e8165eeb17b605a4c286dfb06a97940d27fd8
SHA512

3541ad3f08321d453c617ae4d8bec2ded1dac5710ed090d7dbfe484196bf0240340b346549b29c60bd270ef7a3f51c1744404039825e2801a3d261a1b6ebb9b9
SSDEEP

12288:BcuF2OPlgCxbUuqEolqhlBG0EZRYx35Ua8wvJfiU3us5NhOblYNTwUkVQ+PYJChx:BcuFhCwUuqDluBMfEhJX3z5mKhwbLes

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  db836aeab3ae148a9324be52f6134055_JaffaCakes118
- Size
  
  935KB
- MD5
  
  db836aeab3ae148a9324be52f6134055
- SHA1
  
  3fe1ac7100540db00952bd36d5b3a28ff93b6d17
- SHA256
  
  256076a5d43bd0e42ae34416849e8165eeb17b605a4c286dfb06a97940d27fd8
- SHA512
  
  3541ad3f08321d453c617ae4d8bec2ded1dac5710ed090d7dbfe484196bf0240340b346549b29c60bd270ef7a3f51c1744404039825e2801a3d261a1b6ebb9b9
- SSDEEP
  
  12288:BcuF2OPlgCxbUuqEolqhlBG0EZRYx35Ua8wvJfiU3us5NhOblYNTwUkVQ+PYJChx:BcuFhCwUuqDluBMfEhJX3z5mKhwbLes
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2