9686a6630428a891a1a755a5ea81d5e4ca1bf8b3474a6c04b4a475fe6faa2efa | Triage

Sharing

General

Target

dcba58a0bf48da1e960d7e1ce38d2cc7_JaffaCakes118
Size

14KB
Sample

240912-v8rmfawbpp
MD5

dcba58a0bf48da1e960d7e1ce38d2cc7
SHA1

52cecbf72c9d4a536f3b02ed76bb69fc18f24381
SHA256

9686a6630428a891a1a755a5ea81d5e4ca1bf8b3474a6c04b4a475fe6faa2efa
SHA512

5ebce47769e9e9e5620e5589e45074d8fe4f4d892e0585ddfdd08a45e8dfa9a85474bc9fefd01d91e03dfb0b97c97dae9ec2bac9a05a2f1f9d7b7dff87d7eada
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY/w9e:hDXWipuE+K3/SSHgxm/Ke

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  dcba58a0bf48da1e960d7e1ce38d2cc7_JaffaCakes118
- Size
  
  14KB
- MD5
  
  dcba58a0bf48da1e960d7e1ce38d2cc7
- SHA1
  
  52cecbf72c9d4a536f3b02ed76bb69fc18f24381
- SHA256
  
  9686a6630428a891a1a755a5ea81d5e4ca1bf8b3474a6c04b4a475fe6faa2efa
- SHA512
  
  5ebce47769e9e9e5620e5589e45074d8fe4f4d892e0585ddfdd08a45e8dfa9a85474bc9fefd01d91e03dfb0b97c97dae9ec2bac9a05a2f1f9d7b7dff87d7eada
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY/w9e:hDXWipuE+K3/SSHgxm/Ke
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2