2a08caacb6f3ac3c27231e2396976c9a8588fe166e36214c164b7a2b9065e88f | Triage

Sharing

General

Target

145650d11eab34fadb924fcdfa024a9f_JaffaCakes118
Size

164KB
Sample

241004-wb5y8sxdpm
MD5

145650d11eab34fadb924fcdfa024a9f
SHA1

c1471b7299cbc234b7837d85ba82003efb3bcc1a
SHA256

2a08caacb6f3ac3c27231e2396976c9a8588fe166e36214c164b7a2b9065e88f
SHA512

3e974a05148d5cb96f49c3607f5710b8f867a369a405face82ddbfd4f22472d72472c9568d945ae251c5c720811a077ce148e7d828293081098887887815d9a6
SSDEEP

3072:ciSVipBoNdGhm5P+0he9xagDexm6UJdme3HgrLpbPJG5h:XiilhmIQODDHBJdmOHIFs

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  145650d11eab34fadb924fcdfa024a9f_JaffaCakes118
- Size
  
  164KB
- MD5
  
  145650d11eab34fadb924fcdfa024a9f
- SHA1
  
  c1471b7299cbc234b7837d85ba82003efb3bcc1a
- SHA256
  
  2a08caacb6f3ac3c27231e2396976c9a8588fe166e36214c164b7a2b9065e88f
- SHA512
  
  3e974a05148d5cb96f49c3607f5710b8f867a369a405face82ddbfd4f22472d72472c9568d945ae251c5c720811a077ce148e7d828293081098887887815d9a6
- SSDEEP
  
  3072:ciSVipBoNdGhm5P+0he9xagDexm6UJdme3HgrLpbPJG5h:XiilhmIQODDHBJdmOHIFs
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2