4ed2c1dfd5ba7051c171142feef12205df14646745647561cfba683f67ce3af6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0a5d741b98cda3b9716ac0a130de4170_JaffaCakes118
Size

87KB
Sample

241002-nafc7axapf
MD5

0a5d741b98cda3b9716ac0a130de4170
SHA1

93907b9683a7eef77892aa7855c06c5c00fb0382
SHA256

4ed2c1dfd5ba7051c171142feef12205df14646745647561cfba683f67ce3af6
SHA512

b76da2e5e9d89b028a9650d0989f6d343c76cd0e0ab959b42f617dde8e287400ab0aab0625ca689ee57d9fc28dc1ab866c652a5a5169c4dd06c0ae6f87d511df
SSDEEP

1536:eGaq93mQy5PV4MSu4M3vfAlA89mWMMF4pzYU2qIUZ6kd+ll:e5MaVVnLA0WLM0Uvh6kd+ll

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0a5d741b98cda3b9716ac0a130de4170_JaffaCakes118
- Size
  
  87KB
- MD5
  
  0a5d741b98cda3b9716ac0a130de4170
- SHA1
  
  93907b9683a7eef77892aa7855c06c5c00fb0382
- SHA256
  
  4ed2c1dfd5ba7051c171142feef12205df14646745647561cfba683f67ce3af6
- SHA512
  
  b76da2e5e9d89b028a9650d0989f6d343c76cd0e0ab959b42f617dde8e287400ab0aab0625ca689ee57d9fc28dc1ab866c652a5a5169c4dd06c0ae6f87d511df
- SSDEEP
  
  1536:eGaq93mQy5PV4MSu4M3vfAlA89mWMMF4pzYU2qIUZ6kd+ll:e5MaVVnLA0WLM0Uvh6kd+ll
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2