9f89f4a5c89dbbaf63a637297270cd250206a41ecaf951838a7ca8bf80a4ff7f | Triage

Sharing

General

Target

0b3129ec9cb34319c157c23e0b36f8f7_JaffaCakes118
Size

6.7MB
Sample

241002-r414ja1hrj
MD5

0b3129ec9cb34319c157c23e0b36f8f7
SHA1

c0c83f99ef27a322e8f0d480a994c475fd75daae
SHA256

9f89f4a5c89dbbaf63a637297270cd250206a41ecaf951838a7ca8bf80a4ff7f
SHA512

1238dcb2fbc78e5ee6158c705cc31100d353dcc1723760639c3fcbb5d56125e12ba0147d53db59f5435102b83d96ca7192c5bffede332c6656192d5e79a8a841
SSDEEP

196608:rJzEJEWcue+zXnEm1T4/t6279Bdf79eQuGYKaclcqr:1aEWcu7FTN2R7cQ/YK7cY

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0b3129ec9cb34319c157c23e0b36f8f7_JaffaCakes118
- Size
  
  6.7MB
- MD5
  
  0b3129ec9cb34319c157c23e0b36f8f7
- SHA1
  
  c0c83f99ef27a322e8f0d480a994c475fd75daae
- SHA256
  
  9f89f4a5c89dbbaf63a637297270cd250206a41ecaf951838a7ca8bf80a4ff7f
- SHA512
  
  1238dcb2fbc78e5ee6158c705cc31100d353dcc1723760639c3fcbb5d56125e12ba0147d53db59f5435102b83d96ca7192c5bffede332c6656192d5e79a8a841
- SSDEEP
  
  196608:rJzEJEWcue+zXnEm1T4/t6279Bdf79eQuGYKaclcqr:1aEWcu7FTN2R7cQ/YK7cY
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2