5d811acedb267ee667afa25eab92f79ee1afc96bcf2943e672e8a6b992698615 | Triage

Sharing

General

Target

e031c62e4c8bb86b274eed5ce38d2e29_JaffaCakes118
Size

7.2MB
Sample

240914-psw94avama
MD5

e031c62e4c8bb86b274eed5ce38d2e29
SHA1

6a08a4e4a229c87a786c2ab5aa1e1222d9ee68b3
SHA256

5d811acedb267ee667afa25eab92f79ee1afc96bcf2943e672e8a6b992698615
SHA512

e12121a09d2f1dddce26cbda068d12df716867d5c62fbfd7f0a85c5c3c9a474552fd31badbbec277621cd92aea0a0f6480fa2fc711daa8cbd8c5d8d64bc29fef
SSDEEP

196608:3D4VSzwwzMAOzZQpWYFXLdnrBBkIaaYICwcO1a:3MVSz/5OzapLxrrLtp1a

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e031c62e4c8bb86b274eed5ce38d2e29_JaffaCakes118
- Size
  
  7.2MB
- MD5
  
  e031c62e4c8bb86b274eed5ce38d2e29
- SHA1
  
  6a08a4e4a229c87a786c2ab5aa1e1222d9ee68b3
- SHA256
  
  5d811acedb267ee667afa25eab92f79ee1afc96bcf2943e672e8a6b992698615
- SHA512
  
  e12121a09d2f1dddce26cbda068d12df716867d5c62fbfd7f0a85c5c3c9a474552fd31badbbec277621cd92aea0a0f6480fa2fc711daa8cbd8c5d8d64bc29fef
- SSDEEP
  
  196608:3D4VSzwwzMAOzZQpWYFXLdnrBBkIaaYICwcO1a:3MVSz/5OzapLxrrLtp1a
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2