1e50912a5c6834c51386690e7195272d38da2ed3c18e961dbd562477873537d7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15b57d375309122df0ae8436f3dfe969_JaffaCakes118
Size

15KB
Sample

241005-cbanjsshlb
MD5

15b57d375309122df0ae8436f3dfe969
SHA1

39aa2e955cf9e6e4c906de00667da8acdcf75aa4
SHA256

1e50912a5c6834c51386690e7195272d38da2ed3c18e961dbd562477873537d7
SHA512

810a109eeb1da848e86073304487409d35bb18c3933cf5d8ec83670a6e5b1f4e93f68da244cbac5dcde1f46811485550312d692ef3360e3f867ef5bd8439d975
SSDEEP

192:nByQefGIGk7KRkwdav6/oNpFdssml8aTnwfjzcFmIXVTcfuDU:Zef57m8a8fjQFplTcf4

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  15b57d375309122df0ae8436f3dfe969_JaffaCakes118
- Size
  
  15KB
- MD5
  
  15b57d375309122df0ae8436f3dfe969
- SHA1
  
  39aa2e955cf9e6e4c906de00667da8acdcf75aa4
- SHA256
  
  1e50912a5c6834c51386690e7195272d38da2ed3c18e961dbd562477873537d7
- SHA512
  
  810a109eeb1da848e86073304487409d35bb18c3933cf5d8ec83670a6e5b1f4e93f68da244cbac5dcde1f46811485550312d692ef3360e3f867ef5bd8439d975
- SSDEEP
  
  192:nByQefGIGk7KRkwdav6/oNpFdssml8aTnwfjzcFmIXVTcfuDU:Zef57m8a8fjQFplTcf4
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2