b6cf52bc9ad6c441d4b4b17195d31b83c2b0cb8467f86aead8e8f52d635c41ba | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e13f902bc3b3c9b729dbd7e35a3e243d_JaffaCakes118
Size

82KB
Sample

240914-3f3g8sshln
MD5

e13f902bc3b3c9b729dbd7e35a3e243d
SHA1

875e101c05b81d55fc608828e8628d8f70937dad
SHA256

b6cf52bc9ad6c441d4b4b17195d31b83c2b0cb8467f86aead8e8f52d635c41ba
SHA512

07cc3f16237d1a4cde04e9edf39d1da8c9c43bc9cfcd6a85775671ae8e5b7337c55adb83fb9733acc83523c019391bbec2792e28bc035f150900f5ccdc2c4300
SSDEEP

768:RkcpisvuzgdwMG9hl7c1M5uEcnZ99AO+macp38cpHxm6Qy0siFCvJ4V7wmdUm1aV:KcplSbm1rtAO+mrMAMFCvJgZP1ag5n4l

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e13f902bc3b3c9b729dbd7e35a3e243d_JaffaCakes118
- Size
  
  82KB
- MD5
  
  e13f902bc3b3c9b729dbd7e35a3e243d
- SHA1
  
  875e101c05b81d55fc608828e8628d8f70937dad
- SHA256
  
  b6cf52bc9ad6c441d4b4b17195d31b83c2b0cb8467f86aead8e8f52d635c41ba
- SHA512
  
  07cc3f16237d1a4cde04e9edf39d1da8c9c43bc9cfcd6a85775671ae8e5b7337c55adb83fb9733acc83523c019391bbec2792e28bc035f150900f5ccdc2c4300
- SSDEEP
  
  768:RkcpisvuzgdwMG9hl7c1M5uEcnZ99AO+macp38cpHxm6Qy0siFCvJ4V7wmdUm1aV:KcplSbm1rtAO+mrMAMFCvJgZP1ag5n4l
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2