967b74fd7db1403d90f2f8145862802e48fe40c660cb50204d80fc0aad414046 | Triage

Sharing

General

Target

084885eeed1b1d292ac2c8e814f0ba03_JaffaCakes118
Size

165KB
Sample

241002-b12yna1bmn
MD5

084885eeed1b1d292ac2c8e814f0ba03
SHA1

ecd9bbe0e70c67dbafd88b220c95edeb3132aa40
SHA256

967b74fd7db1403d90f2f8145862802e48fe40c660cb50204d80fc0aad414046
SHA512

d5041db9f3456cc37dba7fc584d9dc533d69e42dbcb727cef3d4d7c2b6db364289880297617605c3eef8c72f6796755aefb6e8f091ae9eb57cba759ad33c50e8
SSDEEP

3072:a4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:hiI/PlY37ZLF4Ca6WABqBOvs

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  084885eeed1b1d292ac2c8e814f0ba03_JaffaCakes118
- Size
  
  165KB
- MD5
  
  084885eeed1b1d292ac2c8e814f0ba03
- SHA1
  
  ecd9bbe0e70c67dbafd88b220c95edeb3132aa40
- SHA256
  
  967b74fd7db1403d90f2f8145862802e48fe40c660cb50204d80fc0aad414046
- SHA512
  
  d5041db9f3456cc37dba7fc584d9dc533d69e42dbcb727cef3d4d7c2b6db364289880297617605c3eef8c72f6796755aefb6e8f091ae9eb57cba759ad33c50e8
- SSDEEP
  
  3072:a4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:hiI/PlY37ZLF4Ca6WABqBOvs
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2