54b0f53f5c6de527ce92be03467dde8bd4a7694c39c1290350121f4d8a2447c5 | Triage

Sharing

General

Target

09b766597c897a0eb8ed58cca3bbed34_JaffaCakes118
Size

14KB
Sample

241002-j4ydmszcmf
MD5

09b766597c897a0eb8ed58cca3bbed34
SHA1

6135a1013963463c62b1b361be40704bcc037176
SHA256

54b0f53f5c6de527ce92be03467dde8bd4a7694c39c1290350121f4d8a2447c5
SHA512

896c7713588682def338a78dc2730ffc4c9a44190499c397c51f3ca5a3dcab05976e84dc1fddde781139ffa9e8dfdbf8a2db0d308ae3221c7661afdbce0ad8ca
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYyO00:hDXWipuE+K3/SSHgxmyOH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  09b766597c897a0eb8ed58cca3bbed34_JaffaCakes118
- Size
  
  14KB
- MD5
  
  09b766597c897a0eb8ed58cca3bbed34
- SHA1
  
  6135a1013963463c62b1b361be40704bcc037176
- SHA256
  
  54b0f53f5c6de527ce92be03467dde8bd4a7694c39c1290350121f4d8a2447c5
- SHA512
  
  896c7713588682def338a78dc2730ffc4c9a44190499c397c51f3ca5a3dcab05976e84dc1fddde781139ffa9e8dfdbf8a2db0d308ae3221c7661afdbce0ad8ca
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYyO00:hDXWipuE+K3/SSHgxmyOH
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2