120d2e1b174e30fa5e590015d6e71d51124f5e3b7f7474019f98983e01ce37fa | Triage

Sharing

General

Target

10bd1c1e5de92b7cd2542cf8e0f83d4a_JaffaCakes118
Size

165KB
Sample

241003-2chszstdjd
MD5

10bd1c1e5de92b7cd2542cf8e0f83d4a
SHA1

92bff84e208edb1e9582e53df448e83b9e7e3bad
SHA256

120d2e1b174e30fa5e590015d6e71d51124f5e3b7f7474019f98983e01ce37fa
SHA512

ab3cff9b881c11ef0ec49d9591ab5bcaf0beb2bf7d9eedb188f8cb802904c711066172744b869a6196954f9e411758ea38964b6a7cd8ce35067ed2dea072babb
SSDEEP

3072:+4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:NiI/PlY37ZLF4Ca6WABqBOvs

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  10bd1c1e5de92b7cd2542cf8e0f83d4a_JaffaCakes118
- Size
  
  165KB
- MD5
  
  10bd1c1e5de92b7cd2542cf8e0f83d4a
- SHA1
  
  92bff84e208edb1e9582e53df448e83b9e7e3bad
- SHA256
  
  120d2e1b174e30fa5e590015d6e71d51124f5e3b7f7474019f98983e01ce37fa
- SHA512
  
  ab3cff9b881c11ef0ec49d9591ab5bcaf0beb2bf7d9eedb188f8cb802904c711066172744b869a6196954f9e411758ea38964b6a7cd8ce35067ed2dea072babb
- SSDEEP
  
  3072:+4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:NiI/PlY37ZLF4Ca6WABqBOvs
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2