00ec67cffcc1893077313caa2d05cfd962558680d79304f21e62a764c6e126d0 | Triage

Sharing

General

Target

0b775eb80af8af8ea52b33250144f546_JaffaCakes118
Size

165KB
Sample

241002-tflp2sycpe
MD5

0b775eb80af8af8ea52b33250144f546
SHA1

4dc1fc78b781ad0de2f49066e307096d92b8d3fe
SHA256

00ec67cffcc1893077313caa2d05cfd962558680d79304f21e62a764c6e126d0
SHA512

47ec44154af7be0cf12ed25f9c9ad26206828f8e83cd2b90d81d0415c6f04df502ce3434be52a1e962e0b67c2b511fe9683feecd29a9f96566745e8c424aedea
SSDEEP

3072:m4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:FiI/PlY37ZLF4Ca6WABqBOvs

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0b775eb80af8af8ea52b33250144f546_JaffaCakes118
- Size
  
  165KB
- MD5
  
  0b775eb80af8af8ea52b33250144f546
- SHA1
  
  4dc1fc78b781ad0de2f49066e307096d92b8d3fe
- SHA256
  
  00ec67cffcc1893077313caa2d05cfd962558680d79304f21e62a764c6e126d0
- SHA512
  
  47ec44154af7be0cf12ed25f9c9ad26206828f8e83cd2b90d81d0415c6f04df502ce3434be52a1e962e0b67c2b511fe9683feecd29a9f96566745e8c424aedea
- SSDEEP
  
  3072:m4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:FiI/PlY37ZLF4Ca6WABqBOvs
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2