e703795278325a76dcc740a07efa715d3ed4dedbc4aa36e2899d43e98db30f32 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dbd1611bba3360607aabc2b133dfa44e_JaffaCakes118
Size

139KB
Sample

240912-e59qva1fpe
MD5

dbd1611bba3360607aabc2b133dfa44e
SHA1

649d72375d0b8c872184d94d754a38eb7d187306
SHA256

e703795278325a76dcc740a07efa715d3ed4dedbc4aa36e2899d43e98db30f32
SHA512

44f2f2be1a5fb9e93c7711dfa7887c7971fbc53daa989ccdb4106d9cc9f73067eca7ce4c409271ab9fa59f3456d5d6f24b55f2cc362b73083133bbf5e7674761
SSDEEP

3072:D+PfirrvusshGGBSf9X2aKFtjhIjs0mzsdA0AXT:yPe5ss8Sf9XmFtyTmqA

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  dbd1611bba3360607aabc2b133dfa44e_JaffaCakes118
- Size
  
  139KB
- MD5
  
  dbd1611bba3360607aabc2b133dfa44e
- SHA1
  
  649d72375d0b8c872184d94d754a38eb7d187306
- SHA256
  
  e703795278325a76dcc740a07efa715d3ed4dedbc4aa36e2899d43e98db30f32
- SHA512
  
  44f2f2be1a5fb9e93c7711dfa7887c7971fbc53daa989ccdb4106d9cc9f73067eca7ce4c409271ab9fa59f3456d5d6f24b55f2cc362b73083133bbf5e7674761
- SSDEEP
  
  3072:D+PfirrvusshGGBSf9X2aKFtjhIjs0mzsdA0AXT:yPe5ss8Sf9XmFtyTmqA
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2