e15f94f407749d17af0b5c84c5fb291b0e6b8ed8b80e0f50baeb9a5d79f8195b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

144cb2feb069ec8e449fac34727887ee_JaffaCakes118
Size

92KB
Sample

241004-v46wka1emg
MD5

144cb2feb069ec8e449fac34727887ee
SHA1

404fe12a2f3c7160bfd9f1a8f973a681f9e5ea86
SHA256

e15f94f407749d17af0b5c84c5fb291b0e6b8ed8b80e0f50baeb9a5d79f8195b
SHA512

c79a7ea2510535614db638ba462e4026dcf5f8bedabc2e2cd2446d47ab4c48cee4f63406c29f14195cf1527cf1b116c5c1133de5bad078ca76adad203bdf5425
SSDEEP

1536:qHOyg0E+vOxt0c5hfHP1qlmv60lHj4UraTPVPSPkP4PjPAkbohaWdV7lObdEZxHu:7yDXA0c5Olmv60l3LbohaMAuwiNCP7J

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  144cb2feb069ec8e449fac34727887ee_JaffaCakes118
- Size
  
  92KB
- MD5
  
  144cb2feb069ec8e449fac34727887ee
- SHA1
  
  404fe12a2f3c7160bfd9f1a8f973a681f9e5ea86
- SHA256
  
  e15f94f407749d17af0b5c84c5fb291b0e6b8ed8b80e0f50baeb9a5d79f8195b
- SHA512
  
  c79a7ea2510535614db638ba462e4026dcf5f8bedabc2e2cd2446d47ab4c48cee4f63406c29f14195cf1527cf1b116c5c1133de5bad078ca76adad203bdf5425
- SSDEEP
  
  1536:qHOyg0E+vOxt0c5hfHP1qlmv60lHj4UraTPVPSPkP4PjPAkbohaWdV7lObdEZxHu:7yDXA0c5Olmv60l3LbohaMAuwiNCP7J
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2