dcbe4961f821649f6f2bae08e74e34793db2ee0e71afdccadf2c802b92fef43b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

142baae8dc263349b29935e994c83b8e_JaffaCakes118
Size

14KB
Sample

241004-vewdjazcjc
MD5

142baae8dc263349b29935e994c83b8e
SHA1

39d60f4b676374b0cab277deb0b0914d24081690
SHA256

dcbe4961f821649f6f2bae08e74e34793db2ee0e71afdccadf2c802b92fef43b
SHA512

079ba7179ed1bd0a5a0c052f74e0388d16111772ab60b54c1a0058d159e2d4bff0f405ec346fef09b99adf49afde9250e52578b9ef166191c9889634525888b5
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhv5C:hDXWipuE+K3/SSHgxl5C

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  142baae8dc263349b29935e994c83b8e_JaffaCakes118
- Size
  
  14KB
- MD5
  
  142baae8dc263349b29935e994c83b8e
- SHA1
  
  39d60f4b676374b0cab277deb0b0914d24081690
- SHA256
  
  dcbe4961f821649f6f2bae08e74e34793db2ee0e71afdccadf2c802b92fef43b
- SHA512
  
  079ba7179ed1bd0a5a0c052f74e0388d16111772ab60b54c1a0058d159e2d4bff0f405ec346fef09b99adf49afde9250e52578b9ef166191c9889634525888b5
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhv5C:hDXWipuE+K3/SSHgxl5C
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2