a9d5cab04feb734a41fa356277a81263c507e3163e66f61608de22056fa59ef1 | Triage

Sharing

General

Target

ea9154cbac6c944aa6b982a5980a2fdb_JaffaCakes118
Size

14KB
Sample

240919-ewdxta1ajg
MD5

ea9154cbac6c944aa6b982a5980a2fdb
SHA1

f8d460965d481e71af290a073c9bd5e74116cd3d
SHA256

a9d5cab04feb734a41fa356277a81263c507e3163e66f61608de22056fa59ef1
SHA512

c002efdaa9ca98fc575875e179ad446b9d654bdf127811e459a9f9468874200ae26817154d4d89de65b17f295e36d7e4b1b4ec39c67517d15e2fca7388996e3a
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4hf:hDXWipuE+K3/SSHgxmY

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ea9154cbac6c944aa6b982a5980a2fdb_JaffaCakes118
- Size
  
  14KB
- MD5
  
  ea9154cbac6c944aa6b982a5980a2fdb
- SHA1
  
  f8d460965d481e71af290a073c9bd5e74116cd3d
- SHA256
  
  a9d5cab04feb734a41fa356277a81263c507e3163e66f61608de22056fa59ef1
- SHA512
  
  c002efdaa9ca98fc575875e179ad446b9d654bdf127811e459a9f9468874200ae26817154d4d89de65b17f295e36d7e4b1b4ec39c67517d15e2fca7388996e3a
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4hf:hDXWipuE+K3/SSHgxmY
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2