60fc20d0c4a9fafc56d9a8d07a52047e92d560713db3fb9c9c3e6f3f1e4fc995 | Triage

Sharing

General

Target

0c7df6409c6c683c5f4654811d06fd2c_JaffaCakes118
Size

14KB
Sample

241002-z6l2ds1crf
MD5

0c7df6409c6c683c5f4654811d06fd2c
SHA1

d5723dee8e479ec3738ab67a5055c40e9f5cfddf
SHA256

60fc20d0c4a9fafc56d9a8d07a52047e92d560713db3fb9c9c3e6f3f1e4fc995
SHA512

670e4d2d684c1430a4c8105af86bb53a6688ef980ee965565d69cb2668ec146753b4196492b340b16df7ec2351c8cae5f8b0b8f597fda020f7a9612e5fa62212
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhz:hDXWipuE+K3/SSHgxV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0c7df6409c6c683c5f4654811d06fd2c_JaffaCakes118
- Size
  
  14KB
- MD5
  
  0c7df6409c6c683c5f4654811d06fd2c
- SHA1
  
  d5723dee8e479ec3738ab67a5055c40e9f5cfddf
- SHA256
  
  60fc20d0c4a9fafc56d9a8d07a52047e92d560713db3fb9c9c3e6f3f1e4fc995
- SHA512
  
  670e4d2d684c1430a4c8105af86bb53a6688ef980ee965565d69cb2668ec146753b4196492b340b16df7ec2351c8cae5f8b0b8f597fda020f7a9612e5fa62212
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhz:hDXWipuE+K3/SSHgxV
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2