12009e897e5cceb35fb530c8694311ca14d01063c09304cc6aec8da736f05c5e | Triage

Sharing

General

Target

eac1bd1acc2a4c67012763e8c79ebf47_JaffaCakes118
Size

575KB
Sample

240919-g7a2eavdqa
MD5

eac1bd1acc2a4c67012763e8c79ebf47
SHA1

077728185888881142d005c9444b6162be7fd5b3
SHA256

12009e897e5cceb35fb530c8694311ca14d01063c09304cc6aec8da736f05c5e
SHA512

ef9345c37ad1075eafee5e636734b69b1417a7545e34e7a40af7ab647a525a1c98acdda83f9d58d23f08e459547e55717a16c6a4a7e36ba63a884542e621c4cd
SSDEEP

12288:pET9pBBVBIVoODuVZhjcvllSa8NHjQr50jku:8OicvP8NDQr50jku

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  eac1bd1acc2a4c67012763e8c79ebf47_JaffaCakes118
- Size
  
  575KB
- MD5
  
  eac1bd1acc2a4c67012763e8c79ebf47
- SHA1
  
  077728185888881142d005c9444b6162be7fd5b3
- SHA256
  
  12009e897e5cceb35fb530c8694311ca14d01063c09304cc6aec8da736f05c5e
- SHA512
  
  ef9345c37ad1075eafee5e636734b69b1417a7545e34e7a40af7ab647a525a1c98acdda83f9d58d23f08e459547e55717a16c6a4a7e36ba63a884542e621c4cd
- SSDEEP
  
  12288:pET9pBBVBIVoODuVZhjcvllSa8NHjQr50jku:8OicvP8NDQr50jku
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2