2e8a3c4214dc2bb697a717ef3cbb4d61d58bde5feca0311ccca52b244dfd0531 | Triage

Sharing

General

Target

ea489963bb838fcd34644cb32800b70a_JaffaCakes118
Size

38KB
Sample

240919-a6j5csscpn
MD5

ea489963bb838fcd34644cb32800b70a
SHA1

c6ac304be35d0a36aef64e3ec3c1c281c6150b2f
SHA256

2e8a3c4214dc2bb697a717ef3cbb4d61d58bde5feca0311ccca52b244dfd0531
SHA512

07567c3c956443594d1931e2b6f22e88aba8403cce5018f0d86ce07512a51b5745b59b1029ef57b28026739f801059b828062a88db99da358767c7d87f7acbb3
SSDEEP

768:SdjyC/ija+1IRZ0zTIX8dw7fwN3O26D7oz4P4G3k:Sdjv0gXd7fwpO2cn

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ea489963bb838fcd34644cb32800b70a_JaffaCakes118
- Size
  
  38KB
- MD5
  
  ea489963bb838fcd34644cb32800b70a
- SHA1
  
  c6ac304be35d0a36aef64e3ec3c1c281c6150b2f
- SHA256
  
  2e8a3c4214dc2bb697a717ef3cbb4d61d58bde5feca0311ccca52b244dfd0531
- SHA512
  
  07567c3c956443594d1931e2b6f22e88aba8403cce5018f0d86ce07512a51b5745b59b1029ef57b28026739f801059b828062a88db99da358767c7d87f7acbb3
- SSDEEP
  
  768:SdjyC/ija+1IRZ0zTIX8dw7fwN3O26D7oz4P4G3k:Sdjv0gXd7fwpO2cn
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2