9268b0a1f9e7ce3f49a9f7f13041c7ff51d1b57045a9897ab7a3a2d9b9f0966b | Triage

Sharing

General

Target

08349a36b2b05dd7fb4094f7946c9313_JaffaCakes118
Size

163KB
Sample

241002-bltnqstdjf
MD5

08349a36b2b05dd7fb4094f7946c9313
SHA1

c59a157bc76888a3536da02c033b28e2c38a974d
SHA256

9268b0a1f9e7ce3f49a9f7f13041c7ff51d1b57045a9897ab7a3a2d9b9f0966b
SHA512

b834348c076d6fe85062d2b1616bd729d87911c3a699828bea1f70ff548379f4bc03c5c52223e73fc16405d64bd7f432dea2ca563462a78a3d4930945bce3379
SSDEEP

3072:f4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4vh:AiI/PlY37ZLF4Ca6WABqBOvsZ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  08349a36b2b05dd7fb4094f7946c9313_JaffaCakes118
- Size
  
  163KB
- MD5
  
  08349a36b2b05dd7fb4094f7946c9313
- SHA1
  
  c59a157bc76888a3536da02c033b28e2c38a974d
- SHA256
  
  9268b0a1f9e7ce3f49a9f7f13041c7ff51d1b57045a9897ab7a3a2d9b9f0966b
- SHA512
  
  b834348c076d6fe85062d2b1616bd729d87911c3a699828bea1f70ff548379f4bc03c5c52223e73fc16405d64bd7f432dea2ca563462a78a3d4930945bce3379
- SSDEEP
  
  3072:f4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4vh:AiI/PlY37ZLF4Ca6WABqBOvsZ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2