f92b08295dcd5575f584138d355ff59179859f7e77176a5feae5aba94395dc77 | Triage

Sharing

General

Target

0af493a6482287dd87008800b288379a_JaffaCakes118
Size

162KB
Sample

241002-q2pr2ssgqb
MD5

0af493a6482287dd87008800b288379a
SHA1

5fae2ceb9d93ca81793dc2e83f494a6918c62380
SHA256

f92b08295dcd5575f584138d355ff59179859f7e77176a5feae5aba94395dc77
SHA512

bdf12ea849b08a8aa84a2e91b7b91d8d7ffd82072819cd3d13dec3b46dec24a814b8b1be2521e522e62cc40ade9ebc451b100a138d5a97d6a9e4ffc4a0ca1da0
SSDEEP

3072:vimnuVXjzu3vsLrP5voun/VqIoKJfma7tYEoFMhYP:1ulu3vsPfdqIoK0a7BKP

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0af493a6482287dd87008800b288379a_JaffaCakes118
- Size
  
  162KB
- MD5
  
  0af493a6482287dd87008800b288379a
- SHA1
  
  5fae2ceb9d93ca81793dc2e83f494a6918c62380
- SHA256
  
  f92b08295dcd5575f584138d355ff59179859f7e77176a5feae5aba94395dc77
- SHA512
  
  bdf12ea849b08a8aa84a2e91b7b91d8d7ffd82072819cd3d13dec3b46dec24a814b8b1be2521e522e62cc40ade9ebc451b100a138d5a97d6a9e4ffc4a0ca1da0
- SSDEEP
  
  3072:vimnuVXjzu3vsLrP5voun/VqIoKJfma7tYEoFMhYP:1ulu3vsPfdqIoK0a7BKP
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2