028ed87fe735e4cd967b9e7aa20eeaa8f933da53af5be56bd18e444ae07e50d4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eefb54d9b10b90d1ae578afcf4446c3d_JaffaCakes118
Size

15KB
Sample

240921-dy2afssglb
MD5

eefb54d9b10b90d1ae578afcf4446c3d
SHA1

b2dac97c54144842eb64700bc5f96c5520df39c9
SHA256

028ed87fe735e4cd967b9e7aa20eeaa8f933da53af5be56bd18e444ae07e50d4
SHA512

7fee1fade4dc622d44047c11b84c3abff4ebe886beee945db65b5570274817422d0ad2342e1153d7bb5163ae02df9018567a8401b713f3d865a9e15716b7f1a7
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhJEHK:hDXWipuE+K3/SSHgxWK

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  eefb54d9b10b90d1ae578afcf4446c3d_JaffaCakes118
- Size
  
  15KB
- MD5
  
  eefb54d9b10b90d1ae578afcf4446c3d
- SHA1
  
  b2dac97c54144842eb64700bc5f96c5520df39c9
- SHA256
  
  028ed87fe735e4cd967b9e7aa20eeaa8f933da53af5be56bd18e444ae07e50d4
- SHA512
  
  7fee1fade4dc622d44047c11b84c3abff4ebe886beee945db65b5570274817422d0ad2342e1153d7bb5163ae02df9018567a8401b713f3d865a9e15716b7f1a7
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhJEHK:hDXWipuE+K3/SSHgxWK
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2