96cecc0ff78fce80862a51e84861a6b07426f79deced37df85e7569bde8a38e8 | Triage

Sharing

General

Target

ea758f2a8637ef1ccfe2161a93b7c5f5_JaffaCakes118
Size

1.3MB
Sample

240919-dftsnaxfln
MD5

ea758f2a8637ef1ccfe2161a93b7c5f5
SHA1

d87eea09ecb2229d8ce67768a43e308a5cc68720
SHA256

96cecc0ff78fce80862a51e84861a6b07426f79deced37df85e7569bde8a38e8
SHA512

065d4b0ea0b289a5c3d64bf6c3b92af5cc160608caffb2c8c949f5451246d6edee4d1f22ca4ed0fb66bfd4defa3fa1426ff46f2b8a00f6a7026b95f2b8540f9d
SSDEEP

24576:sB4BblWzyptJKO/sEYYHnitT58tlLCQzoOkhV8iaM:sB+bohTnuo

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ea758f2a8637ef1ccfe2161a93b7c5f5_JaffaCakes118
- Size
  
  1.3MB
- MD5
  
  ea758f2a8637ef1ccfe2161a93b7c5f5
- SHA1
  
  d87eea09ecb2229d8ce67768a43e308a5cc68720
- SHA256
  
  96cecc0ff78fce80862a51e84861a6b07426f79deced37df85e7569bde8a38e8
- SHA512
  
  065d4b0ea0b289a5c3d64bf6c3b92af5cc160608caffb2c8c949f5451246d6edee4d1f22ca4ed0fb66bfd4defa3fa1426ff46f2b8a00f6a7026b95f2b8540f9d
- SSDEEP
  
  24576:sB4BblWzyptJKO/sEYYHnitT58tlLCQzoOkhV8iaM:sB+bohTnuo
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2