708e2fa07fb077ea8eb6595f83917d88a6cee28a93eed357b2a3a53fd9906382 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

06ef29470b4665740e0d808bdc8069f4_JaffaCakes118
Size

13KB
Sample

241001-xabjnsyaqh
MD5

06ef29470b4665740e0d808bdc8069f4
SHA1

72dbe7885187690351ab25d18d16e4f73c784816
SHA256

708e2fa07fb077ea8eb6595f83917d88a6cee28a93eed357b2a3a53fd9906382
SHA512

f8b7322011e671616cee8df01a60be4a8f8fc482ec5671bee6a4b04f9364a514a2bfee14c7514f60e46bdac36eb9f3b0fa9c8b089cf37f017409555c88711701
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhR0H:hDXWipuE+K3/SSHgx4H

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  06ef29470b4665740e0d808bdc8069f4_JaffaCakes118
- Size
  
  13KB
- MD5
  
  06ef29470b4665740e0d808bdc8069f4
- SHA1
  
  72dbe7885187690351ab25d18d16e4f73c784816
- SHA256
  
  708e2fa07fb077ea8eb6595f83917d88a6cee28a93eed357b2a3a53fd9906382
- SHA512
  
  f8b7322011e671616cee8df01a60be4a8f8fc482ec5671bee6a4b04f9364a514a2bfee14c7514f60e46bdac36eb9f3b0fa9c8b089cf37f017409555c88711701
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhR0H:hDXWipuE+K3/SSHgx4H
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2