002db362e50ad1a19af695372c2511cdb2de3fd61c23c5e18901be8fd90a0efd | Triage

Sharing

General

Target

eac37f1765369ed6834dfc82d7ca8780_JaffaCakes118
Size

233KB
Sample

240919-g93jfaveqe
MD5

eac37f1765369ed6834dfc82d7ca8780
SHA1

9d8e8dadf568c05c336bebfc09b177d8ffc95ce8
SHA256

002db362e50ad1a19af695372c2511cdb2de3fd61c23c5e18901be8fd90a0efd
SHA512

6d91edaf662fc310f4d6e4e206c6ddc48e57fd3fe43a7c71abe308b12dbe1d51afd4950282dfd611394f2f50f223271285ec69dd7236805f15e2641b94437a78
SSDEEP

6144:4xyMeM8tKmy/q7RglyFlqsGnK48uGSiU4pl:4xyMehti/8R7lJEGSiU4H

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  eac37f1765369ed6834dfc82d7ca8780_JaffaCakes118
- Size
  
  233KB
- MD5
  
  eac37f1765369ed6834dfc82d7ca8780
- SHA1
  
  9d8e8dadf568c05c336bebfc09b177d8ffc95ce8
- SHA256
  
  002db362e50ad1a19af695372c2511cdb2de3fd61c23c5e18901be8fd90a0efd
- SHA512
  
  6d91edaf662fc310f4d6e4e206c6ddc48e57fd3fe43a7c71abe308b12dbe1d51afd4950282dfd611394f2f50f223271285ec69dd7236805f15e2641b94437a78
- SSDEEP
  
  6144:4xyMeM8tKmy/q7RglyFlqsGnK48uGSiU4pl:4xyMehti/8R7lJEGSiU4H
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2