dd882c2385e3729dcb1aa4cc78826274e8edb4d7e7b2aea3d316f9079091a3d2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b93e4be58600ec559beb4526210af52_JaffaCakes118
Size

14KB
Sample

241002-tz654azcpg
MD5

0b93e4be58600ec559beb4526210af52
SHA1

78f15f3063e7283e3ab264bd1d452fc0466cdd8d
SHA256

dd882c2385e3729dcb1aa4cc78826274e8edb4d7e7b2aea3d316f9079091a3d2
SHA512

99fd2335dcf93ccf933eb6eea0d6c79e563766f66c3f02e32c73434276f12deb0672db37bea806fbee9b5fd5607a13d2057905055f97ce80f537d4b5a9c9a6ad
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYW:hDXWipuE+K3/SSHgxmW

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0b93e4be58600ec559beb4526210af52_JaffaCakes118
- Size
  
  14KB
- MD5
  
  0b93e4be58600ec559beb4526210af52
- SHA1
  
  78f15f3063e7283e3ab264bd1d452fc0466cdd8d
- SHA256
  
  dd882c2385e3729dcb1aa4cc78826274e8edb4d7e7b2aea3d316f9079091a3d2
- SHA512
  
  99fd2335dcf93ccf933eb6eea0d6c79e563766f66c3f02e32c73434276f12deb0672db37bea806fbee9b5fd5607a13d2057905055f97ce80f537d4b5a9c9a6ad
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYW:hDXWipuE+K3/SSHgxmW
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2