2b22fe039d34145904cecd287751273775c4aa7a8fed803709f7885659304527 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eb4ca29d76d0a2bc23ef274053fe763c_JaffaCakes118
Size

14KB
Sample

240919-n9hmlaxhnr
MD5

eb4ca29d76d0a2bc23ef274053fe763c
SHA1

a8d3f34836cc17aa62f310fe95550f59a2a3ad10
SHA256

2b22fe039d34145904cecd287751273775c4aa7a8fed803709f7885659304527
SHA512

345dfbc81dba5f44c036c7a20a6bce898b94fae244b1f8ada434fc1b22186259279bdc70d8ed7e166a7c0a44fb48741ebd85bd6bd2dfdc726f5d2d37abb9acab
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhWx:hDXWipuE+K3/SSHgxcx

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  eb4ca29d76d0a2bc23ef274053fe763c_JaffaCakes118
- Size
  
  14KB
- MD5
  
  eb4ca29d76d0a2bc23ef274053fe763c
- SHA1
  
  a8d3f34836cc17aa62f310fe95550f59a2a3ad10
- SHA256
  
  2b22fe039d34145904cecd287751273775c4aa7a8fed803709f7885659304527
- SHA512
  
  345dfbc81dba5f44c036c7a20a6bce898b94fae244b1f8ada434fc1b22186259279bdc70d8ed7e166a7c0a44fb48741ebd85bd6bd2dfdc726f5d2d37abb9acab
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhWx:hDXWipuE+K3/SSHgxcx
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2