633e54c489c854ad722253551e490e4435e3d9c9e002da12bbcc0de1509c540e | Triage

Sharing

General

Target

0c8a4921849df0046bea3b9dbefd80f9_JaffaCakes118
Size

12KB
Sample

241002-1eswas1hpe
MD5

0c8a4921849df0046bea3b9dbefd80f9
SHA1

8a618e17320d10f486861babb4feaede3898f2c2
SHA256

633e54c489c854ad722253551e490e4435e3d9c9e002da12bbcc0de1509c540e
SHA512

e3793852c094d5c81684af548388bccd199c5dcbc05bba9b63123a0a92cfbb85ec1208e26a175965f51ca1fa6d36c152ab5af279d621909cf03de65b17e7633e
SSDEEP

192:en31R5Fhp8cdwpHR3AkPLiM79mLU2PcSe8hcqm:oj5FZdgAkTiM79mgLSeScqm

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0c8a4921849df0046bea3b9dbefd80f9_JaffaCakes118
- Size
  
  12KB
- MD5
  
  0c8a4921849df0046bea3b9dbefd80f9
- SHA1
  
  8a618e17320d10f486861babb4feaede3898f2c2
- SHA256
  
  633e54c489c854ad722253551e490e4435e3d9c9e002da12bbcc0de1509c540e
- SHA512
  
  e3793852c094d5c81684af548388bccd199c5dcbc05bba9b63123a0a92cfbb85ec1208e26a175965f51ca1fa6d36c152ab5af279d621909cf03de65b17e7633e
- SSDEEP
  
  192:en31R5Fhp8cdwpHR3AkPLiM79mLU2PcSe8hcqm:oj5FZdgAkTiM79mgLSeScqm
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2