708ebdbf78160621acad063cc7ad2f2f1789e7acb2c3d2d05ffec303ef9e0a10 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

085e63df67fe1182861fadab99ed0be7_JaffaCakes118
Size

14KB
Sample

241002-cg9pts1hmj
MD5

085e63df67fe1182861fadab99ed0be7
SHA1

73aa40bd5d723a5c5d699fe059001bfaf0074c1a
SHA256

708ebdbf78160621acad063cc7ad2f2f1789e7acb2c3d2d05ffec303ef9e0a10
SHA512

a190d5fa9f1fbb7c58bbb695507c14d6472bebaf0bab6ff5bd24a91b2c9454dacd7b338450fd0be69c50b6dab5df5af3d5efa83f2d3ee05f7c3e689569d19766
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY48HCS:hDXWipuE+K3/SSHgxm7d

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  085e63df67fe1182861fadab99ed0be7_JaffaCakes118
- Size
  
  14KB
- MD5
  
  085e63df67fe1182861fadab99ed0be7
- SHA1
  
  73aa40bd5d723a5c5d699fe059001bfaf0074c1a
- SHA256
  
  708ebdbf78160621acad063cc7ad2f2f1789e7acb2c3d2d05ffec303ef9e0a10
- SHA512
  
  a190d5fa9f1fbb7c58bbb695507c14d6472bebaf0bab6ff5bd24a91b2c9454dacd7b338450fd0be69c50b6dab5df5af3d5efa83f2d3ee05f7c3e689569d19766
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY48HCS:hDXWipuE+K3/SSHgxm7d
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2