1e6aa573c08c3e33f848576d62f99387fb8d23902530c40ed946a6e363f21445 | Triage

Sharing

General

Target

15dcdae961d3953948845deb0e8bfcbe_JaffaCakes118
Size

14KB
Sample

241005-c94paa1cqk
MD5

15dcdae961d3953948845deb0e8bfcbe
SHA1

9fd7b608fd42fd504556828bec00b42956c9a845
SHA256

1e6aa573c08c3e33f848576d62f99387fb8d23902530c40ed946a6e363f21445
SHA512

b39b31022593e88d934ae42f4b769de317d8a3f27c20fcd8342eecc6a826ea5cd2682e485a0f29df2687bc4a34572ea0ec17d65bbf7ef0686c547dbbeee7edad
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYqNG:hDXWipuE+K3/SSHgxmqY

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  15dcdae961d3953948845deb0e8bfcbe_JaffaCakes118
- Size
  
  14KB
- MD5
  
  15dcdae961d3953948845deb0e8bfcbe
- SHA1
  
  9fd7b608fd42fd504556828bec00b42956c9a845
- SHA256
  
  1e6aa573c08c3e33f848576d62f99387fb8d23902530c40ed946a6e363f21445
- SHA512
  
  b39b31022593e88d934ae42f4b769de317d8a3f27c20fcd8342eecc6a826ea5cd2682e485a0f29df2687bc4a34572ea0ec17d65bbf7ef0686c547dbbeee7edad
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYqNG:hDXWipuE+K3/SSHgxmqY
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2