cde7da4efdee39700863c743f1ba997024f319ddfc478fe99a079186dfd44ee8 | Triage

Sharing

General

Target

0195d1c72da0464f8a070a6ebf4a31ac_JaffaCakes118
Size

14KB
Sample

240930-qsz7esxgrm
MD5

0195d1c72da0464f8a070a6ebf4a31ac
SHA1

92331f62b977bee22ab8abb6c850e368fc03f474
SHA256

cde7da4efdee39700863c743f1ba997024f319ddfc478fe99a079186dfd44ee8
SHA512

8f1e85f0bbbce729799773cb2470c41697f8c8e43f8df8f60971e7623f35d9294d5fdcafe6bc1ef53cbf1589dc861b5c573427df80863e256df19b78da68a719
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYS:hDXWipuE+K3/SSHgxmS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0195d1c72da0464f8a070a6ebf4a31ac_JaffaCakes118
- Size
  
  14KB
- MD5
  
  0195d1c72da0464f8a070a6ebf4a31ac
- SHA1
  
  92331f62b977bee22ab8abb6c850e368fc03f474
- SHA256
  
  cde7da4efdee39700863c743f1ba997024f319ddfc478fe99a079186dfd44ee8
- SHA512
  
  8f1e85f0bbbce729799773cb2470c41697f8c8e43f8df8f60971e7623f35d9294d5fdcafe6bc1ef53cbf1589dc861b5c573427df80863e256df19b78da68a719
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYS:hDXWipuE+K3/SSHgxmS
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2