0dc951cecf9326f38ddf9415ed01406cb118c251184b1a81d0fd40c4ee0d96d0 | Triage

Sharing

General

Target

0a4a4218784bf1714a3fe73101775653_JaffaCakes118
Size

14KB
Sample

241002-mw1qkssbjq
MD5

0a4a4218784bf1714a3fe73101775653
SHA1

d0393506c2e8fc8c75bb2d5c8e42b191689fea72
SHA256

0dc951cecf9326f38ddf9415ed01406cb118c251184b1a81d0fd40c4ee0d96d0
SHA512

5bd689831cdb8ad5ec688608f10b7e527cd3930a5236ae4ccb0a807012a40c57be532da2400270188901918a89e1b0e2cc4552f24d6a9b61efce79d990aabc5f
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhn/:hDXWipuE+K3/SSHgxl

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0a4a4218784bf1714a3fe73101775653_JaffaCakes118
- Size
  
  14KB
- MD5
  
  0a4a4218784bf1714a3fe73101775653
- SHA1
  
  d0393506c2e8fc8c75bb2d5c8e42b191689fea72
- SHA256
  
  0dc951cecf9326f38ddf9415ed01406cb118c251184b1a81d0fd40c4ee0d96d0
- SHA512
  
  5bd689831cdb8ad5ec688608f10b7e527cd3930a5236ae4ccb0a807012a40c57be532da2400270188901918a89e1b0e2cc4552f24d6a9b61efce79d990aabc5f
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhn/:hDXWipuE+K3/SSHgxl
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2