85d9a0ebcf02286c7b09fcde76bd5503ae041ef2fd0f40fa31511731b34acf40 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15643e61e8ad60f45b2b32f9a753372d_JaffaCakes118
Size

15KB
Sample

241004-3154vsxhqg
MD5

15643e61e8ad60f45b2b32f9a753372d
SHA1

92a815f488f704228b89112bf3744559110190c4
SHA256

85d9a0ebcf02286c7b09fcde76bd5503ae041ef2fd0f40fa31511731b34acf40
SHA512

e6369189804ed26a8bd2967cedf7cdb1f40e20440e9da7d1bc16dc91506117d37ef6125496e9d8b8fe3b86252f2617ba6037d4d713eebb12e90e5b1bc7ebc8c7
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx0:hDXWipuE+K3/SSHgxmHm

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  15643e61e8ad60f45b2b32f9a753372d_JaffaCakes118
- Size
  
  15KB
- MD5
  
  15643e61e8ad60f45b2b32f9a753372d
- SHA1
  
  92a815f488f704228b89112bf3744559110190c4
- SHA256
  
  85d9a0ebcf02286c7b09fcde76bd5503ae041ef2fd0f40fa31511731b34acf40
- SHA512
  
  e6369189804ed26a8bd2967cedf7cdb1f40e20440e9da7d1bc16dc91506117d37ef6125496e9d8b8fe3b86252f2617ba6037d4d713eebb12e90e5b1bc7ebc8c7
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx0:hDXWipuE+K3/SSHgxmHm
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2