206e24eb762399555a6901c5c40b2b0d4e6a151a3e2da5564b9cd222559ba0b2 | Triage

Sharing

General

Target

e1275e4f624ffb14752823c819e03bed_JaffaCakes118
Size

104KB
Sample

240914-19r79azdqk
MD5

e1275e4f624ffb14752823c819e03bed
SHA1

543c08d8d9768a17b59f5c8b58756f55d8fb069e
SHA256

206e24eb762399555a6901c5c40b2b0d4e6a151a3e2da5564b9cd222559ba0b2
SHA512

8c29709d1bab5f2a2956107eb017135d5a7b4e1d5eb33411bca39cb39ebdf2e06b7001ed7611df2c0ad67016d02d43c9635c622ad53246c4dc5c6b99c6cbe3c9
SSDEEP

1536:aoGBRBV2wn4h17HxxVEFSQAJs8m9RERgRcRHRQRZkjjE3JGX2WGH4dFkSJLMktBZ:zG9cu27x+FlA2wgZ5z4CY

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e1275e4f624ffb14752823c819e03bed_JaffaCakes118
- Size
  
  104KB
- MD5
  
  e1275e4f624ffb14752823c819e03bed
- SHA1
  
  543c08d8d9768a17b59f5c8b58756f55d8fb069e
- SHA256
  
  206e24eb762399555a6901c5c40b2b0d4e6a151a3e2da5564b9cd222559ba0b2
- SHA512
  
  8c29709d1bab5f2a2956107eb017135d5a7b4e1d5eb33411bca39cb39ebdf2e06b7001ed7611df2c0ad67016d02d43c9635c622ad53246c4dc5c6b99c6cbe3c9
- SSDEEP
  
  1536:aoGBRBV2wn4h17HxxVEFSQAJs8m9RERgRcRHRQRZkjjE3JGX2WGH4dFkSJLMktBZ:zG9cu27x+FlA2wgZ5z4CY
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2