b9d3f8ec058e0d401ed8a2d256c02231928c290e6ae5ba16f893d0808b2f95db | Triage

Sharing

General

Target

0fea80f4ee6979f2acf3d21f9ae998a3_JaffaCakes118
Size

1.2MB
Sample

241003-wa5xva1hkb
MD5

0fea80f4ee6979f2acf3d21f9ae998a3
SHA1

6c89f5a6680511f36b189dd5604930ec3f09206d
SHA256

b9d3f8ec058e0d401ed8a2d256c02231928c290e6ae5ba16f893d0808b2f95db
SHA512

d134397b6973e60e319563dab8cd1c4fc2959e392cbd8dbfdefe8c0ca9f38c99b1134868ab3449689394d5d0eb664d187cd99b68ff23572a40d62ad397914bb5
SSDEEP

24576:Iutr5OUFBJkDURc9i0b/mHQr4UeNmJ7MXIU8y69GivJB0r5xebLGZ:IuXPkDUuo0b/mHTUe8J7MXIx9YuJhC

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0fea80f4ee6979f2acf3d21f9ae998a3_JaffaCakes118
- Size
  
  1.2MB
- MD5
  
  0fea80f4ee6979f2acf3d21f9ae998a3
- SHA1
  
  6c89f5a6680511f36b189dd5604930ec3f09206d
- SHA256
  
  b9d3f8ec058e0d401ed8a2d256c02231928c290e6ae5ba16f893d0808b2f95db
- SHA512
  
  d134397b6973e60e319563dab8cd1c4fc2959e392cbd8dbfdefe8c0ca9f38c99b1134868ab3449689394d5d0eb664d187cd99b68ff23572a40d62ad397914bb5
- SSDEEP
  
  24576:Iutr5OUFBJkDURc9i0b/mHQr4UeNmJ7MXIU8y69GivJB0r5xebLGZ:IuXPkDUuo0b/mHTUe8J7MXIx9YuJhC
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2